‘Lemon Duck’ cryptominer mines for monero cryptocurrency, Sophos says. Gang that developed the malware is now deploying new obfuscation techniques to avoid detection. Lemon Duck uses COVID-19 pandemic themes in spam emails to persuade recipients to open malicious attachments. The malware uses the infected computer to replicate itself in a network and then uses the contacts from the victim’s Microsoft Outlook account to send additional spam emails. It then plants Mimikatz – a script used to steal credentials and escalate privileges within compromised Windows devices.”]
Source: https://www.cuinfosecurity.com/lemon-duck-cryptominer-aims-for-linux-systems-a-14909