Two new attacks have emerged to exploit the zero-day Windows Shell vulnerability. Like Stuxnet, these new attacks use specially crafted shortcut files to cause Windows to execute remote code. The first piece of malware is called Dulkis-A, a Windows worm, which copies itself to any attached removable storage device. The other piece is Chymine, a keylogging Trojan application “designed to steal information from infected computers” Microsoft has yet to patch the vulnerability, but on Tuesday detailed a workaround that would prevent attacks from exploiting the bug.”]
Source: https://www.darkreading.com/attacks-breaches/windows-shell-attacks-increase