Ande Loader Malware Targets Manufacturing Sector in North America

The threat actor known as Blind Eagle has been observed using a loader malware called Ande Loader to deliver remote access trojans (RATs) like Remcos RAT and NjRAT.

The attacks, which take the form of phishing emails, targeted Spanish-speaking users in the manufacturing industry based in North America, eSentire said.

Blind Eagle (aka APT-C-36) is a financially motivated threat actor&

access actor america attacks blind eagle called eagle emails esentire industry loader malware manufacturing manufacturing industry manufacturing sector njrat north north america phishing phishing emails rat rats remcos remcos rat remote access remote access trojans sector spanish speaking threat threat actor trojans