Security researchers are analyzing a sophisticated malware delivery mechanism that uses a JScript loader to deploy different payloads based on the victim’s geographic location. This loader initiates a complex chain involving obfuscated PowerShell scripts, ultimately executing potent malware like the XWorm Remote Access Trojan (RAT) or the Rhadamanthys information stealer. The attack often begins via […]

The post Unmasking Xworm Payload Execution Path through Jailbreaking a Malicious JScript Loader appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Kaaviya

Source: gbHackers
Source Link: https://gbhackers.com/unmasking-xworm-payload-execution-path-through-jailbreaking/