D3F@ck Loader, the New MaaS Loader

216.73.217.22

D3F@ck Loader, the New MaaS Loader

· Published 21/05/2024 21:03 · Modified 21/05/2024 21:07

Essential information

Published: 21/05/2024 21:03
Modified: 21/05/2024 21:07
Tags: 2024-05-21 c2 server cyber danabot figure fileswindows nt google ads inno setup loader microsoft phishing smartscreen threat response unit
Related entities: 1 vulnerabilities (cve), 3 observables, 5 techniques (mitre), 9 others

Description

In March 2024, eSentire's Threat Response Unit (TRU) discovered multiple instances of D3F@ck Loader infections being propagated via Google Ads. This new loader, which debuted on hacking forums in January 2024 (Figure 1), can allegedly bypass several key security features such as Google Chrome, Edge, Windows Defender alerts, and SmartScreen.

External references

https://www.esentire.com/blog/d3f-ck-loader-the-new-maas-loader
https://otx.alienvault.com/pulse/664d0c32c10dc70041c961a7

D3F@ck Loader, the New MaaS Loader

Essential information

Description

Related entities

Vulnerabilities (CVE) (1)

Observables (3)

Techniques (MITRE) (5)

Others (9)

External references