The living-off-the-land binary (LOLBin) is anchoring a rash of cyberattacks bent on evading security detection to drop Qbot and Lokibot.
https://threatpost.com/cybercriminals-windows-utility-regsvr32-malware/178333/
The new Necro Python exploit targets Visual Tool DVRs used in surveillance systems.
https://threatpost.com/freakout-botnet-dvrs-monero-cryptominers/175467/