A new malware campaign started on 4th July to target victims with KONNI, an unknown Remote Access Trojan (RAT) that has been in use for over three years. Malware uses a new Command and Control server hosted on a website that disguises as a legitimate climbing club. The site does not actually contain any real text, but the default text of the CMS (Content Management System) The malware uses an email attachment as the initial infection vector to deliver the Trojan through an executable file that when opened displays an MS Office document that disguised as an article about the test missile launch.
Source: https://thehackernews.com/2017/07/north-korea-missile-malware.html