The email false xlsx points to a fake site with a zip document. This contains a VBS with a powershell which downloads the malware. C2 is the same as RemcosRAT.
A double offensive against Isis in Iraq and Syria is underway. The ISF target the Islamic State cells in Diyala and Nineveh. Jazeera Storm’s SDF at Deir Ezzor and Hasakah
Double anti-ISIS offensive in Iraq and eastern Syria. In the first country the Baghdad government announced new mass maneuvers against the Islamic State in Diyala and Nineveh. In the second, the SDF launched a series of blitzes in the provinces of Deir Ezzor and Hasakah. In both cases, the goal is to eliminate the Daesh cells hidden in the area. These, in fact, are responsible for the attacks on the population that in recent days have caused several victims in the two nations. The last happened in Khnez, near Raqqa, in Baghdad and in Diyala. Furthermore, they are trying to gain ground by extorting local inhabitants to find resources and funding. There is a real risk, therefore, that they can be grouped together by increasing the level of threat to security.
The Syrian army (SAA) tries to react to the wave of Daesh attacks on Abu Kamal with raids in some villages. However, IS blitzes continue
Meanwhile, south of Deir Ezzor, the Syrian army (SAA) tries to react to the Isis attacks on Abu Kamal. The soldiers of Damascus and the allies have strengthened posts in the city and carried out raids in nearby villages in search of elements of the Islamic State. In addition, the SAA has made several arrests of suspected Daesh militia in Qouriya. The jihadist blitzes, however, have not stopped. In the past, there has been a new IS incursion in the Mayadeen area and clashes further south. Terrorists are trying in every way to create an escape corridor across the Euphrates to Iraq. However, the SDF have increased security in the eastern part of the province. So the only viable route is the one that passes from Abu Kamal, not far from the neighboring country.