Azerbaijan’s ETX reveals phishing attempt targeting banks and government agencies

The Electronic Security Service (ETX) under Azerbaijan’s Ministry of Digital Development and Transport disclosed the results of an investigation into a phishing attempt against the country’s banking and government sectors, ETX said.

ETX specialists conducted reverse engineering on the detected malicious software to analyze its behavior and components, identifying additional indicators of compromise.

The attack involved a “loader” embedded in a Microsoft Excel file and malware hidden via steganography in an image file. The malware used in the operation was identified as “Remcos,” designed to be deployed on target computer systems.

ETX published a schematic overview of the attack, providing further technical details on its execution.