Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
SecurityWeek

New DeepLoad Malware Dropped in ClickFix Attacks

The new DeepLoad malware has been distributed in ClickFix attacks to steal user credentials and install a rogue browser ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
GitHub

Direct Syscall DLL Injection

Dll injector in a remote process using direct system calls resolved dynamically from ntdll.dll, the Dll uses Syscalls to inject encrypted shellcode into the same process, undetected by Windows ...
GitHub

DLL- Injector.csproj.FileListAbsolute.txt

C:\Users\reece\source\repos\DLL- Injector\DLL- Injector\obj\Debug\net8.0-windows\DLL- Injector.GeneratedMSBuildEditorConfig.editorconfig C:\Users\reece\source\repos ...