Netwalker Fileless Ransomware Injected via Reflective Loading
released on 2020-05-27 @ 06:44:49 PM
Trend Micro observed Netwalker ransomware attacks that involve malware that is not compiled, but written in PowerShell and executed directly in memory and without storing the actual ransomware binary into the disk. This makes this ransomware variant a fileless threat, enabling it to maintain persistence and evade detection by abusing tools that are already in the system to initiate attacks.