The ASEC analysis team has discovered that the GuLoader malware is being distributed to Korean corporate users. GuLoader is a downloader that has been steadily distributed since the past, downloading various malware.
REFERENCE: https://asec.ahnlab.com/en/40283/
MALWARE FAMILY: GuLoader - S0561
ATT&CK IDS: T1566 - Phishing, T1105 - Ingress Tool Transfer, T1055 - Process Injection, T1106 - Native API, T1027 - Obfuscated Files or Information
Read More:
Comments