Tag: Hijack Loader Malware

Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version
News

Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version

A more recent iteration of the malware loader known as Hijack Loader has been seen to use a revised set of anti-analysis strategies to evade detection. In a technical study, Zscaler ThreatLabz researcher Muhammad Irfan V A stated that the goal of these improvements is to make the virus more stealthy so that it can evade detection for longer periods of time. The most recent versions of Hijack Loader come with modules that allow users to disable User Account Control (UAC), create an exclusion for Windows Defender Antivirus, avoid inline API hooking—which security software frequently uses to detect malicious activity—and leverage process hollowing. In September 2023, the cybersecurity group published its first report on Hijack Loader, also known as IDAT Loader, a malware loader read...