The malware, which is well-suited for spying, doesn’t match any code the researchers have seen before.
Hackers are trying to spread malicious software by using world leaders' names to generate interest.
The attacks comes as the Tor Project is trying to enhance trust in the anonymity browser.
A hacking group with North Korean ties has been targeting U.S. entities with malicious documents this summer as it works to hide its tracks better, according to research from Prevailion.
Symantec now says that Thrip is likely another threat group — known Billbug or Lotus Blossom — that has been operating against targets in South Asia for approximately a decade.
Cyber Command looks to have uploaded its biggest cache of malware on a North Korean holiday.