National Cyber Warfare Foundation (NCWF)

Threat Actors Using .hwp Files to Distribute RokRAT Malware and Evade Detection Mechanisms
0 user ratings		2025-07-24 15:35:15
milo
Red Team (CNA)

The AhnLab Security intelligence Center (ASEC) has identified a sophisticated campaign where threat actors are leveraging Hangul Word Processor (.hwp) documents to disseminate the RokRAT remote access trojan (RAT), marking a departure from traditional methods that relied on shortcut (LNK) files embedded with decoy content and malicious scripts. This shift to .hwp files, commonly used […]


The post Threat Actors Using .hwp Files to Distribute RokRAT Malware and Evade Detection Mechanisms appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/threat-actors-using-hwp-files/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.