Cybersecurity researchers have uncovered a never-before-seen dropper that serves as a conduit to launch next-stage malware with the ultimate goal of infecting Windows systems with information stealers and loaders.
« This memory-only dropper decrypts and executes a PowerShell-based downloader, » Google-owned Mandiant said. « This PowerShell-based downloader is being tracked as PEAKLIGHT. »
Some of