Chinese Hackers Exploit Microsoft APP-V Tool to Evade Antivirus Detection

The Chinese hacker group "Mustang Panda" has been caught abusing the Microsoft Application Virtualization Injector utility as a LOLBIN to inject malicious payloads into legitimate processes in order to evade antivirus software detection. This technique allows attackers to bypass security measures and compromise targeted systems. Users of Microsoft APP-v are particularly affected. It is recommended to monitor the use of this tool and implement additional security measures to detect and prevent such attacks.