BottomLoader

Description

(Talos) Pivoting off the NineRAT samples, we discovered two additional malware families written in DLang by Lazarus. One of these is simply a downloader we track as “BottomLoader” meant to download and execute the next stage payload from a remote host such as HazyLoad.

Names

Name
BottomLoader

Type

Downloader

Information

https://blog.talosintelligence.com/lazarus_new_rats_dlang_and_telegram/

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.bottomloader

Other Information

Uuid

ad4c5c3e-7c81-4920-bea8-cee14ff7831f

Last Card Change

2024-01-17

Threat Intelligence Garden

Explorer

BottomLoader

BottomLoader

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks