Zscaler ThreatLabz discovered a new malware, RiseLoader, in October 2024, which specializes in downloading and executing second-stage payloads. It uses a network communication protocol similar to RisePro but unlike the latter, is not primarily used for information stealing. This malware emerged after the development of RisePro was discontinued. RiseLoader obfuscates its code using VMProtect and collects information about installed cryptocurrency applications and browser extensions.
WhatsApp on Windows users targeted in new campaign, warns Microsoft – Malwarebytes
WhatsApp on Windows users targeted in new campaign, warns Microsoft Malwarebytes
