Silent Night Banking Trojan Charges Top Dollar on the Underground May 21, 2020 https://threatpost.com/silent-night-banking-trojan/155981/ Malwarebytes: Shining a light on “Silent Night” Zloader/Zbot
ZLoader banking malware is back, deployed in over 100 campaigns May 22, 2020 https://www.bleepingcomputer.com/ne...lware-is-back-deployed-in-over-100-campaigns/ Proofpoint: ZLoader Loads Again: New ZLoader Variant Returns
New Zloader malware technique makes it harder to spot phishing emails The novel distribution technique involves sending Word documents that may bypass conventional malware scanning July 9, 2021 https://www.itpro.co.uk/security/ma...hrough-attachments-without-any-malicious-code McAfee: Zloader With a New Infection Technique
Microsoft code-sign check bypassed to drop Zloader malware January 5, 2022 Checkpoint Research: Can You Trust a File’s Digital Signature? New Zloader Campaign exploits Microsoft’s Signature Verification putting users at risk
"Microsoft disrupts Zloader malware in global operation A months-long global operation led by Microsoft's Digital Crimes Unit (DCU) has taken down dozens of domains used as command-and-control (C2) servers by the notorious ZLoader botnet. The court order obtained by Microsoft allowed it to sinkhole 65 hardcoded domains used by the ZLoader cybercrime gang to control the botnet and another 319 domains registered using the domain generation algorithm used to create fallback and backup communication channels..." https://www.bleepingcomputer.com/ne...disrupts-zloader-malware-in-global-operation/
These attacks using forged digital signatures are becoming a big problem and seems it's able to bypass Win Defender? That's why it's never a good idea to rely only on AV's, I keep saying this.