Security News > 2020 > January > sLoad Malware Revamped as Powerful ‘StarsLord’ Loader

The sLoad malware downloader, a PowerShell-based trojan first spotted in May 2018, has a new, polished version that comes with "More powerful features, posing even higher risk," Microsoft researchers are warning.

Starslord, a downloader that installs itself to the system, connects to a remote server, and downloads additional malware onto the infected system.

The latest sLoad version comes on the heels of a previous Microsoft December research paper describing the downloader's attack techniques, suggesting that the developers behind the malware are trying to shake off any analysis, Microsoft warned.

"With the ability to track the stage of infection, malware operators with access to the Starslord backend could build a detailed view of infections across affected machines and segregate these machines into different groups," researchers said.

sLoad continues to evolve, and Proofpoint researchers in 2018 said that only months after its discovery, there were already several incremental changes to the malware dropper.

News URL

https://threatpost.com/sload-malware-revamped-starslord-l-features/152084/