More_eggs
More_eggs was initially incubated in October of 2018 as malware used to create a backdoor in Windows-based operating systems. Notorious threat actors such as the Cobalt Group, Evilnum, and FIN6 used the malware to target financial, pharmaceutical, retail, and entertainment companies. Various social engineering methods, such as spear-phishing attacks or impersonating online recruiters, were used to lure unsuspecting victims into downloading the more_eggs malware. Recently, bad actors are using it by targeting online recruiters via Linked In.