![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhIdwYU4i2rdn3xTLQhE7SDHpfbJ0IfQMCfaOUEk2Ns7xgYrLVZJ7x3fGHw-E4lMCMrA7Ba21AZV9oh5OkwxSjscO7Cc4nJJyKje8NQmVM6nEuTDS2WJm5L5gufT9yn3iNk9vcix4LK7liuSCYBvGHlWiwd_1Aw_kKwdcYoEz-9vjOnGdn8BFngDoLEcNEi/s1600/cyber (1).jpg)
The Russian-speaking cybercrime group called RedCurl is leveraging a legitimate Microsoft Windows component called the Program Compatibility Assistant (PCA) to execute malicious commands.
“The Program Compatibility Assistant Service (pcalua.exe) is a Windows service designed to identify and address compatibility issues with older programs,” Trend Micro said in an analysis
Source:: The Hackers News