THREAT OPS › Threat News › Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation
Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation
<p>A cybercrime campaign combined a loader-as-a-service framework and DLL sideloading via a Go-compiled fake MpClient.dll, a novel evasion layer combination.</p> <p>The post <a href="https://unit42.paloaltonetworks.com/vidar-stealer-xmrig-miner-campaign-analysis/">Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation</a> appeared first on <a href="https://unit42.paloaltonetwork
MITRE ATT&CK techniques
- Code SigningT1553.002