GootLoader (0bdb6f1c-1229-4556-a535-7444ddfbd7a9)
GootLoader is a malware loader historically associated with the GootKit malware. As its developers updated its capabilities, GootLoader has evolved from a loader downloading a malicious payload into a multi-payload malware platform. As a loader malware, GootLoader is usually the first-stage of a system compromise. By leveraging search engine poisoning, GootLoader’s developers may compromise or create websites that rank highly in search engine results, such as Google search results. How is it delivered? Via Malicious files available for download on compromised websites that rank high as search engine results
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
GootLoader (0bdb6f1c-1229-4556-a535-7444ddfbd7a9) | Tool | GootLoader (5b2569e5-aeb2-4708-889f-c6d598bd5e14) | Malpedia | 1 |