New Zloader Infection Chain Comes With Improved Stealth and Evasion Mechanisms
released on 2021-09-14 @ 07:59:37 AM
SentinelLabs identified a new ZLoader botnet recently set up which implements a novel delivery mechanism with a stealthy infection chain. ZLoader operators deployed undetected droppers and disabled security solutions to lower the chances of detection. During their investigation they were able to map all the new ZLoader C2 infrastructure related to the ‘Tim’ botnet, identify the scope of the campaign and its intentions (mostly, stealing bank credentials from customers of European banks).