Ransomware operators are hiding malware deeper in installer packages
Credit to Author: msft-mmpc| Date: Thu, 16 Mar 2017 03:15:46 +0000
We are seeing a wave of new NSIS installers used in ransomware campaigns. These new installers pack significant updates, indicating a collective move by attackers to once again dodge AV detection by changing the way they package malicious code. These changes are observed in installers that drop ransomware like Cerber, Locky, and others. Cybercriminals have…
Read more