Deep Analysis: FormBook New Variant Delivered in Phishing Campaign – Part III

April 28, 2021

When FormBook starts in a target process, it loads an ntdll.dll module and then overrides its data with the deployed FormBook malware. This disguises FormBook as an ntdll.dll module when it runs.

click here to read full Article

Read more on Malware updates & News

Tags: analysis campaign Cybersecurity Architect deep delivered FormBook FortiGuard Labs III part Phishing Threat Research Variant

You may also like...

Leave a Reply Cancel reply