A bit more detail here: https://www.bleepingcomputer.com/news/security/cyber-espionage-group-customizes-old-public-tools/