Appears to be a DNS hijack. https://www.bleepingcomputer.com/ne...unchyroll-com-hijacked-to-distribute-malware/
I saw this malware at the beggining of the distribution, only Kaspersky of the traditional vendors detected it (static detection of course). I was disappointed at the speed of reaction from many vendors
Problem with VT is they are only running the AV engines. For example, it could have been blacklisted in the AV rep scanner till a formal sig. issued.
Yes, I know that. ESET for example has a internal blacklist powered by the cloud (they reacted pretty quickly compared to the rest) and some other vendors could have protected their users with behavior block and more powerful local heuristics, but I am still disappointed.
