Threadkit seems to have a new CVE-2018-4878 exploit, or at least I've not seen it before. Is this new?

Cobalt Group Pushes Revamped ThreadKit Malware https://t.co/S5dRBKlyp8

Despite arrest of #CobaltGroup's ringleader early this year, the #threat group is ramping up their malicious behavior. https://t.co/95fDr3J4Xn #malware #threadkit #cryptography #hacks

#threadkit dropping #formbook via #malspam; c2 sites here: https://t.co/N5o23y0dhA hash aa590a773eb2297f2d474d11792f6311 for the doc on @mal_share

Киберпреступники Cobalt усовершенствовали свой эксплойт-билдер ThreadKit https://t.co/KYtQMrYMXW

63% of the payloads delivered by the Threadkit maldoc builder were Trickbot #malware. --@GaborSzappanos #VB2018

Pretty sweet #threadkit doc via #malspam, is #pony with c2 of: http://www.a10gamesa10[.]com/php/gate.php cc @benkow_ @Xylit0l @Anti_Expl0it @h3x2b @cocaman @0Btemos_BHS @fumik0_

#LokiBot #ThreadKit 103_010COUS180790001_6412663116-09-04-18.doc 8c64c1f6830691ac48a80dc7cd30e0f3 185.82.202.87 POST /~zadmin/cam/conn.php Subject: SWIFT Transfer (103) 010COUS180790001 From: swift@dtbafrica.com [+] WebShell Active

Cobalt Group Pushes Revamped ThreadKit Malware https://t.co/ryD7RUs3BE

Cobalt Group Uses New Version of ThreadKit Malware https://t.co/PEUcooyJKM

#threadkit #maldoc #rtf sample seems to be very busy. Had a lot of signature hits, not sure how many are true. @malwrhunterteam Run at: https://t.co/i07C3rd81X

Cobalt Bank Robbers Use New ThreadKit Malicious Doc Builder https://t.co/SIyNM7Xu2e

The Cobalt group, known for targeting financial institutions, has been using a new variant of the Threadkit Office exploit in its attacks https://t.co/b6ZQ70XPvL

New #ThreadKit exploit builder used to spread #banking #Trojan and RATs https://t.co/XSNDMa9Bkg #Cybersecurity #Fintech #Blockchain #infosec #Cybersec #Chatbots #AI #Bigdata #Datascience #privacy #privacymatters #crypto

New @threatinsight blog post - Unraveling ThreadKit: New document exploit builder used to distribute The Trick, Formbook, Loki Bot and other #malware: https://t.co/T8pYICT6AG

Unraveling ThreadKit: New document exploit builder used to distribute The Trick, Formbook, Loki Bot and other #malware. https://t.co/VQj73SO5nH

Two #threadkit #rtf docs dropping #Azorult both docs had 8/59 on VT and one seemed blockchain themed. maksssnd[.]beget[.]tech/index.php 94[.]250.248.105/task.bat https://t.co/Vum1aW8gfP https://t.co/DeUo3upJyN

New #ThreadKit campaign. Malicious doc (RTF exploit #CVE-2017-8570) drops SCT, decoy doc, cmd files, kill-switch (blOCk.tXt) and finally payload named "saver.scr". https://t.co/jkXEVUaS7U https://t.co/dfs1qVgj4s

Cobalt Group Pushes Revamped ThreadKit Malware https://t.co/kq8TUumRbC via @InfoSecHotSpot