Earth Preta launches new campaign and uses DOPLUGS to target Asia
A threat actor group called Earth Preta has been running a campaign targeting Asia using a malware called DOPLUGS to infect victims via phishing emails. DOPLUGS serves as a downloader to retrieve a more advanced PlugX malware strain. The campaign has focused on government entities in Taiwan Vietnam Malaysia and other Asian countries. DOPLUGS has constantly evolved since 2022 integrating features like the KillSomeOne USB worm module.