"Highly Evasive SquidLoader Malware Targets China"

A malware loader called "SquidLoader" is linked to an unknown threat actor that has targeted Chinese-speaking victims for two years, LevelBlue Labs reports. LevelBlue Labs believes SquidLoader was active for at least a month before its discovery at the end of April. The threat actor using it has long targeted entities in China. Recently observed attacks start with phishing emails delivering malware loaders disguised as documents for Chinese organizations. When the loaders are executed, they fetched and executed shellcode payloads in the loader process' memory. This article continues to discuss findings regarding the SquidLoader malware.

SecurityWeek reports "Highly Evasive SquidLoader Malware Targets China"

Submitted by grigby1