Palo Alto Networks’ Unit 42 has revealed multiple sophisticated malware campaigns using advanced encryption and code virtualisation techniques to avoid detection. Attackers are employing the Advanced Encryption Standard (AES) and symmetric keys to encrypt malware payloads. The technique is more difficult to analyse than basic XOR-based obfuscation. Agent Tesla, XWorm, and FormBook/XLoader samples have been found to use these advanced methods, indicating a significant enhancement of malware sophistication.
Dark Caracal group might have refreshed its malware, researchers say
Dark Caracal, a hacker group known for cyber espionage, could be shifting to use Poco RAT, a new form of malware, in its operations, say
