Malware attack campaign linked to notorious group that uses Google Drive as command-and-control server. Attackers use a new variant of their backdoor Trojan called RogueRobin, which infects victims’ computers by tricking them into opening a Microsoft Excel document containing embedded VBA macros. The latest malicious campaign conducted by the DarkHydrus APT group was also observed against targets in the Middle East, according to reports published by the 360 Threat Intelligence Center (360TIC) and Palo Alto Networks.
Source: https://thehackernews.com/2019/01/macro-malware-microsoft-office.html