Threat Actors Using MacroPack to Deploy Brute Ratel, Havoc, and PhantomCore Payloads
Malicious actors potentially utilized the MacroPack red-teaming framework to distribute harmful payloads like Brute Ratel and Havoc tools, as well as a new version of the PhantomCore remote access trojan.