Popular Malware Families Using ‘Process Doppelgänging’ to Evade Detection

The fileless code injection technique called Process Doppelgänging is actively being used by not just one or two but a large number of malware families in the wild, a new report shared with The Hacker News revealed.

Discovered in late 2017, Process Do… Continue reading Popular Malware Families Using ‘Process Doppelgänging’ to Evade Detection

Ransomware Uses Process Hiding Technique to Evade Antivirus

A ransomware program called SynAck uses a sophisticated process hiding technique that was first documented last year as a proof-of-concept to evade detection. Dubbed Process Doppelgänging, the method was presented at the Black Hat security conference … Continue reading Ransomware Uses Process Hiding Technique to Evade Antivirus

Variant of SynAck Malware Adopts Doppelgänging Technique

Ransomware adopts Process Doppelgänging technique to avoid antivirus researchers and avoid detection in a newly identified malware double threat targeting users in the U.S., Kuwait and Germany. Continue reading Variant of SynAck Malware Adopts Doppelgänging Technique

First-Ever Ransomware Found Using ‘Process Doppelgänging’ Attack to Evade Detection

Security researchers have spotted the first-ever ransomware exploiting Process Doppelgänging, a new fileless code injection technique that could help malware evade detection.

The Process Doppelgänging attack takes advantage of a built-in Windows funct… Continue reading First-Ever Ransomware Found Using ‘Process Doppelgänging’ Attack to Evade Detection

Process Doppelgänging: New Malware Evasion Technique Works On All Windows Versions

A team of security researchers has discovered a new malware evasion technique that could help malware authors defeat most of the modern antivirus solutions and forensic tools.

Dubbed Process Doppelgänging, the new fileless code injection technique tak… Continue reading Process Doppelgänging: New Malware Evasion Technique Works On All Windows Versions