The attack involves phishing emails containing malicious RAR archives (specifically using the CVE-2023-38831 WinRAR vulnerability).
For detection and mitigation strategies, this blog post from SOC Prime offers useful information. If you're investigating this threat, I can help by finding: of the payload YARA rules for detection Information on the WinRAR vulnerability involved sc23902-IN.part2.rar
A highly relevant and detailed article on this topic is: by The Hacker News. Key Highlights of the Campaign: The attack involves phishing emails containing malicious RAR