Security researchers have discovered a new piece of malware called SkinnyBoy that was used in spear-phishing campaigns attributed to Russian-speaking hacking group APT28. The malware is intended for an intermediary stage of the attack, to collect information about the victim and to retrieve the next payload from the command and control (C2) server. Multiple victims are in the European Union but the activity may have impacted organizations in the United States, too. The threat actor is also known as Fancy Bear, Sednit, Sofacy, Strontium or PwnStorm.
Source: https://www.bleepingcomputer.com/news/security/new-skinnyboy-malware-used-by-russian-hackers-to-breach-sensitive-orgs/