It typically downloads RATs/Stealers, such as Agent Tesla, Arkei/Vidar, Formbook, Lokibot, Netwire and Remcos, often but not always from Google Drive. It was initially called "Babushka Crypter" by Insidemalware.ĬloudEyE (initially named GuLoader) is a small VB5/6 downloader. FormBook contains a unique crypter RunPE that has unique behavioral patterns subject to detection.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |