From malware.news
![](https://i2.wp.com/asec.ahnlab.com/wp-content/uploads/2021/05/%EA%B7%B8%EB%A6%BC2-1.png?resize=763%2C148&ssl=1)
The ASEC analysis team is continually reporting malicious documents disguised as North Korea or public institution related materials that are being distributed. In this post, the team will introduce a malicious DOC (Word) document impersonating a U.S. investment bank. See [Figure 1] for more details. The .doc document operates in MAC OS environment and installs a backdoor on the user PC upon being infected.