DotRunpeX is one of the new and stealthiest .NET injectors that employs the “Process Hollowing” method, through which this malware distributes a diverse range of other malware strains. Cybersecurity researchers at Check Point recently revealed the real-world use and campaign-related infection paths of DotRunpeX malware after closely monitoring and observing the DotRunpeX malware. Additionally, the researchers confirmed in a report they submitted to Cyber Security News that the DotRunpeX malware injector is developing and evolving quickly.
Source: GBHackers