MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

Updated on May 2, 2025

The malware loader known as MintsLoader has been used to deliver a PowerShell-based remote access trojan called GhostWeaver.
“MintsLoader operates through a multi-stage infection chain involving obfuscated JavaScript and PowerShell scripts,” Recorded Future’s Insikt Group said in a report shared with The Hacker News.
“The malware employs sandbox and virtual machine evasion techniques, a domain…

Read the rest of the story at Read More

Source: The Hacker News

December 3, 2024 Uncategorized

NachoVPN Tool Exploits Flaws in Popular ...

July 26, 2024 Uncategorized

Critical Flaw in Telerik Report Server P...

November 6, 2024 Uncategorized

MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

Related posts

NachoVPN Tool Exploits Flaws in Popular ...

Critical Flaw in Telerik Report Server P...

INTERPOL Disrupts Over 22,000 Malicious ...

Leave a Comment Cancel reply

Recent News

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines

MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

Microsoft Sets Passkeys Default for New Accounts; 15 Billion Users Gain Passwordless Support

Fake Security Plugin on WordPress Enables Remote Admin Access for Attackers

Why top SOC teams are shifting to Network Detection and Response