Researchers Identify New Sophisticated Malware CoffeeLoader

Cybersecurity researchers have identified a new sophisticated malware called CoffeeLoader, designed to download and execute secondary payloads. According to Zscaler ThreatLabz, this malware exhibits behavioral similarities to another known malware loader called SmokeLoader. CoffeeLoader uses a GPU-based packer, Armoury Packer, to avoid detection by EDR and antivirus solutions. The primary goal of this malware is to download and execute second-level payloads while evading detection.