Exploit kits continue to be used as a malware delivery platform. In 2020, we’ve observed a number of different malvertising campaigns…
Tag: smoke loader
Domen toolkit gets back to work with new malvertising campaign
Last year, we documented a new social engineering toolkit we called “Domen” being used in the wild. Threat actors were using…
Exploit kits: fall 2018 review
Exploit kit (EK) activity continues to surprise us as the weather cools, the leaves change, and we move into the fall of…
Fake Spectre and Meltdown patch pushes Smoke Loader malware
The Meltdown and Spectre bugs have generated a lot of media attention, and users have been urged to update their machines…
Terror exploit kit goes HTTPS all the way
We’ve been following the Terror exploit kit during the past few months and observed notable changes in both its redirection mechanism…
New-looking Sundown EK drops Smoke Loader, Kronos banker
As we keep a tab on exploit kits, today we are looking at some changes with Sundown EK. Nowhere near as…
Smoke Loader – downloader with a smokescreen still alive
This time we will have a look at another payload from recent RIG EK campaign. It is Smoke Loader (Dofoil), a…