A newly spotted campaign is leveraging BPL sideloading and other uncommon tricks to deliver the IDAT Loader (aka HijackLoader) malware and prevent its detection. The campaign Spotted by Kroll’s incident responders and analyzed by the company’s Cyber Threat Intelligence (CTI) team, the campaign involves: A Bollywood pirate movie download site pointing to page hosted on the Bunny content delivery platform, which in turn points to a ZIP file Within that ZIP file, another password-protected ZIP … More
The post Malware peddlers experimenting with BPL sideloading and masking malicious payloads as PGP keys appeared first on Help Net Security.