“Nimza Loader” is a new malware written in Nim programming language. The malware is designed to provide attackers with access to the victim’s Windows systems and execute arbitrary commands retrieved from a command-and-control server. The development marks one of the rare instances of Nim malware discovered in the threat landscape. The campaign made use of personalized email phishing lures containing a link to a supposed PDF document that redirected the recipient to a Nimza loader executable hosted on Slack. The executable is also being used to download and execute Cobalt Strike as its secondary payload.
Source: https://thehackernews.com/2021/03/researchers-spotted-malware-written-in.html