Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
Malware and Vulnerabilities
April 02, 2025
The Hacker News
Hijack Loader released a new module that implements call stack spoofing to hide the origin of function calls (e.g., API and system calls). The attack chain involves the use of a phishing email as a starting point.
Read More
Call Stack Spoofing
Hijack Loader
API Calls
system calls
anti-VM checks
Publisher
Previous
Hackers Distributing Phishing Malware Via SVG Format To ...
Malware and Vulnerabilities
Next
Hackers Exploit Microsoft Teams Messages to Deliver Mal ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/ec7c_shutterstock_2304557185.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/b110_shutterstock_1228087117.jpg)
