Peaklight is a sophisticated and stealthy memory-only malware that was discovered on August 22, 2024. It infiltrates systems using crafty techniques to evade detection and cause harm. This malicious software can penetrate your computer or device through suspicious downloads, emails, or websites, often without your knowledge. Once inside, it has the potential to steal personal information, disrupt operations, or even hold your data hostage for ransom.
The malware employs DLL side-loading techniques, which allow it to execute infostealers like Cryptbot and SHADOWLADDER malware. These infostealers are harmful programs designed to extract sensitive information from infected systems. Additionally, Peaklight dynamically unpacks ZIP files and runs their contents in hidden directories, making it difficult for traditional anti-malware software to detect its presence and activities.
Several samples of this malware were found with unique identifiers, including "Setup exe", "erefgojgbu", "L2 zip" under Cryptbot; "oqnhustu", "WebView2Loader dll" under LUMMAC V2; "Powershell" under Peaklight; and multiple files under SHADOWLADDER such as "cymophane doc", "WCLDll dll", "bentonite cfg", among others. Each of these components plays a specific role in the infection process, collectively enabling Peaklight to perform its malicious activities effectively and covertly.
Description last updated: 2024-10-17T12:12:43.511Z