HijackLoader evolution: abusing genuine signing certificates

SUMMARY :

A report by HarfangLab EDR and MITRE ATT&CK on the threat posed by the Lumma Stealer malware, published on 11 October, 2024, outlines the tactics used to deploy the malware.

OPENCTI LABELS :

powershell,lumma,installer,loader,lumma stealer,dll sideloading,infection chain,hijackloader,samples,path,harfanglab edr,sha256,fake captcha,zip archive,hider,gate


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


HijackLoader evolution: abusing genuine signing certificates