Cybercriminals are using a new malware loader dubbed HijackLoader to distribute a variety of payloads, including DanaBot, SystemBC, and RedLine Stealer.
According to Zscaler ThreatLabz researcher Nikolaos Pantazopoulos, “Even though HijackLoader does not contain advanced features, it is capable of using a variety of modules for code injection and execution since it uses a modular architecture, a feature that most loaders do not have.”
The malware, which the business first discovered in July 2023, uses a variety of sneaky tactics to avoid detection. This entails delaying code execution by up to 40 seconds at various points, monitoring processes connected to security software based on an embedded blocklist, and leveraging syscalls to avoid detection by security solutions read more New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.