TransparentTribe’s Spear-Phishing Targeting Indian Government Departments

The malicious file, disguised as “Recommendation for the award of President’s.docm,” contained a VBA script that executed the CrimsonRAT remote control program, capable of stealing sensitive information.