New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World

A new malware loader named HijackLoader is becoming popular among cybercriminals. It delivers various malicious payloads like DanaBot, SystemBC, and RedLine Stealer. HijackLoader uses several techniques to remain undetected, including avoiding monitoring from security solutions, delaying code executions, and using a modular architecture for code injection and execution. It maintains persistence on compromised systems by creating a shortcut file in the Windows Startup folder. The initial access vector for HijackLoader remains unknown.