New TicTacToe Malware Dropper Attacking Windows Users

19 February 2024

Malware often targets Windows users due to the operating system’s widespread popularity, making it a lucrative target for threat actors. Windows systems have historically been perceived as more vulnerable due to their larger user base and the majority of security vulnerabilities. The FortiGuard team recently discovered a cluster of malware droppers delivering various final-stage payloads in 2023. In a report shared with Cyber Security News (CSN), Fortinet affirmed these droppers use multiple stages of obfuscated payloads, with some identified payloads including Leonem, AgentTesla, SnakeLogger, RemLoader, Sabsik, LokiBot, Taskun, Androm, Upatre, and Remcos. Named ‘TicTacToe dropper,’ the group is identified by a common Polish language string, ‘Kolko_i_krzyzyk,’ interpreting TicTacToe.

Source: GBHackers

Date:

19 February 2024

Categorie(s):

NEWS

Tag(s):

Cyber Security News, Dropper, Malware, New, Users

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024