After few months of absence, the botnet returns.

It’s targeting the Italian users too, and it is spreading through attached ZIP files.

The Zip file includes an Excel file and a malicious macro, within it.

Starting from April 2022, Microsoft had run a cover to stop and disable Excel macros code, and to stop the ability of running any files being downloaded from the Internet.If there a label “Mark-of-the-Web (MoTW)” then this is a warn that this file will open in “Protected View” mode. To prevent any execution of macros.

Today the users trust more content than the past, because they were used to use and collaborate services freely. So, the training and dealing with suspected file is very important at this time, due to our digital world era.