Attackers are distributing malware, including RATs and CoinMiners, disguised as cracked MS Office versions via file-sharing services and torrents.
Malware installs persist through Task Scheduler entries, executing PowerShell commands to reinstall strains after removal attempts.
Without proper remediation, such as AhnLab’s V3, systems face continuous malware installations, compromising user information and system control.
Preventive Measures: Users are advised to download software from official sources and update security solutions to prevent infections and remove persistent threats