Press ESC to close

PEAKLIGHT: Decoding the Stealthy Memory-Only Malware

Written by: Aaron Lee, Praveeth DSouza TL;DR Mandiant identified a new memory-only dropper using a complex, multi-stage infection process. This memory-only dropper decrypts and executes a PowerShell-based downloader. This PowerShell-based downloader is being tracked as PEAKLIGHT. Overview Mandiant Managed Defense identified a memory-only dropper and downloader delivering malware-as-a-service infostealers. During our investigation, Mandiant observed the malware download payloads such as LUMMAC.V2… Read More

Source: Unnamed Source

Published on: August 22, 2024

Related posts:

HrServ – Previously unknown web shell used in APT attack Active Remediation: Proactive Response with Huntress Managed EDR | Huntress Phishing Attacks Are Top Cyber Crime Threat, Easier Than Ever to Create and Deploy Announcing the 11th Annual Flare-On Challenge

Leave a Reply

Your email address will not be published. Required fields are marked *

Stay Updated with Our Newsletter

Filter Posts by Date

Explore Topics