New FormBook Dropper Harbors Obfuscation, Persistence

Never-before-seen dropper found in FormBook samples that has increased persistence and obfuscation capabilities.

Researchers are warning that a future data-theft attack may be brewing after discovering a new sample of the FormBook malware, with a never-before-seen dropper — i.e. a malicious file that is used in the initial infection stage and installs malware on the system.

FormBook, a browser form-stealer and keylogger, has been under active development since it popped up on hacking forums in 2016.

Read more…
Source: ThreatPost