Four websites were attacked with undocumented malware fragments in Armenia. Downloader and backdoor were used in the waterhole operation assigned to the Russian threat group Turla. All the action on Armenian websites began at the beginning of 2019.

-Consular section of the Embassy of Armenia in Russia

– Ministry of Nature Conservation and Natural Resources of the Artsakh Republic

– Armenian Institute of International Affairs and Security

– Armenian Deposit Guarantee Fund

Hackers added malicious JavaScript code, which comes from the external source “skategirlchina.Com,” which can collect fingerprints.

https://www.bleepingcomputer.com/news/security/advanced-russian-hackers-use-new-malware-in-watering-hole-operation/