silversurfer
Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Forum Veteran
- Aug 17, 2014
- 12,731
- 123,854
- 8,399
LODEINFO Fileless Malware Evolves with Anti-Analysis and Remote Code Tricks
- Thread starter silversurfer
- Start date
Thanks for the article, interesting to see, that in its (virus) original attack and then updated attack, there seemed to be human error to alow.
"While the maldoc requires users to enable macros to activate the killchain, the June 2022 campaign was found to drop this method in favor of an SFX file that, when executed, displays a harmless decoy Word document to conceal the malicious activities.". Glad to see(in the article)that Kaspersky and Eset both detect this
"While the maldoc requires users to enable macros to activate the killchain, the June 2022 campaign was found to drop this method in favor of an SFX file that, when executed, displays a harmless decoy Word document to conceal the malicious activities.". Glad to see(in the article)that Kaspersky and Eset both detect this
You may also like...
-
Linux Malware Delivered via Malicious RAR Filenames Evades Antivirus Detection- Started by Brownie2019
- Replies: 12
-
Proxyware Malware Poses as YouTube Video Download Site, Delivering Malicious JavaScript
- Started by Brownie2019
- Replies: 1
-
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072)
Nebulous Mantis Targets NATO-Linked Entities with Multi-Stage Malware Attacks- Started by [correlate]
- Replies: 0
-
Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack
- Started by Brownie2019
- Replies: 0
-
Hackers Use Facebook Ads to Spread JSCEAL Malware via Fake Cryptocurrency Trading Apps
- Started by Brownie2019
- Replies: 0