The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
GitHub

windows-dll-injection

Extreme Injector V3.7.3 is a powerful Windows DLL injector for injecting custom DLLs into processes, offering multiple injection methods and customizable settings.
GitHub

WIN_Thread_NameCalling_DLL_Injection.yar

description = "Detects binaries implementing the DLL injection variant of the 'Thread Name-Calling' technique. Abuses SetThreadDescription/GetThreadDescription to ...