New JinxLoader Targeting Users with Formbook and XLoader Malware

The newly-discovered JinxLoader malware, whose deployment involves multi-step phishing attacks, has been found to act as a loader for Formbook and XLoader payloads. The malware, sold online at hackforums[.]net, is typically received through phishing emails mimicking the Abu Dhabi National Oil Company. Cybersecurity firms have also observed an increase in infections from Rugmi loader malware and an updated version of the Meduza Stealer malware on the dark web.