National Cyber Warfare Foundation (NCWF)

OXLOADER Uses MBA Obfuscation and Control-Flow Flattening to Bypass Static Detection
0 user ratings		2026-06-22 06:12:15
milo
Red Team (CNA)

A previously undocumented Windows loader, tracked as OXLOADER, that combines sophisticated obfuscation and unconventional staging to evade static detection and sandbox analysis while delivering the new CASTLESTEALER infostealer via malvertising. The campaign leveraged malicious Google Ads impersonating Node.js and API Monitor, redirecting victims through intermediary domains to Storj-hosted batch scripts that download and execute OXLOADER […]


The post OXLOADER Uses MBA Obfuscation and Control-Flow Flattening to Bypass Static Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Mayura Kathir

Source: gbHackers
Source Link: https://gbhackers.com/oxloader-uses-mba-obfuscation/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.