#dll-side-loading

[ follow ]
#confucius-apt #wooperstealer #anondoor #pakistan #apt28 #outlook-vba-backdoor #data-exfiltration #quirkyloader
Information security
fromThe Hacker News
13 hours ago

Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware

Confucius targeted Pakistan using spear-phishing and malicious files to deploy WooperStealer and the Python backdoor Anondoor via DLL side-loading.
Information security
fromThe Hacker News
4 weeks ago

Russian APT28 Deploys "NotDoor" Outlook Backdoor Against Companies in NATO Countries

APT28 deployed an Outlook VBA backdoor called NotDoor that monitors emails for a trigger to exfiltrate data, upload files, execute commands, and persist via DLL side-loading.
Information security
fromThe Hacker News
1 month ago

Hackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake Keylogger

QuirkyLoader is a .NET AOT-compiled DLL loader used in email spam campaigns to deliver information stealers and RATs via DLL side-loading and process hollowing.
[ Load more ]