The Ramsay “framework” emerged in late 2019. As of April 2020, there appear to be two fully maintained branches of the framework. The Ramsay malware/toolsets are heavily focused on both persistence and data exfiltration from air-gapped environments. The original version of Ramsay was distributed via maliciously-crafted office documents. These documents were distributed via email, and […]