Phishing emails with subject ‘Azovstal’ infect Ukrainian state organisations with Cobalt Strike Beacon

The Computer Emergency Response Team of Ukraine (CERT-UA) reported the spread of phishing emails that infect computers with Cobalt Strike Beacon malware.

The campaign targets Ukrainian state organisations by sending phishing emails which call for the deblocking of Azovstal, one of the largest steel plants in Ukraine. The emails contain a document dubbed ‘Urgent!,’ and if opened, it compromises the computer with the malware.