Hackers are abusing the Windows Problem Reporting (WerFault.exe) error reporting tool for Windows to load malware into a compromised system’s memory using a DLL sideloading technique.
The use of this Windows executable is to stealthy infect devices without raising any alarms on the breached system by launching the malware through a legitimate Windows executable.
The new campaign was spotted by K7 Security Labs, which could not identify the hackers, but they are believed to be based in China.
Read more…
Source: Bleeping Computer