MintsLoader Delivers GhostWeaver RAT via Multi-Stage Infection Chain
MalwareCybersecurityThreatIntelligenceRemoteAccessTrojan
This content is an AI-generated summary. If you encounter any misinformation or problematic content, please report it to cyb.hub@proton.me.
The MintsLoader malware downloader has been used to distribute a PowerShell-based remote access Trojan called GhostWeaver. MintsLoader operates through a multi-stage infection chain involving obfuscated JavaScript and PowerShell scripts. The malware employs sandbox and virtual machine evasion techniques, as well as a domain generation algorithm (DGA) and TLS for stealthy attacks. This information comes from a report by Recorded Future's Insikt Group shared with The Hacker News.