A new attack campaign uses a combination of HTML smuggling techniques and data blobs┬áto evade detection and download malware. […]

from https://www.bleepingcomputer.com/news/security/duri-campaign-smuggles-malware-via-html-and-javascript/