New DLL side-loading has been leveraged by the Quasar RAT backdoor, also known as CinaRAT or Yggdrasil, to further obscure malicious data exfiltration activities against Windows devices, The Hacker News reports. Attacks commence with the deployment of an ISO image that features the legitimate “ctfmon.exe”

Source: SC Magazine