Peaklight

Malware updated a month ago (2024-11-29T14:50:54.902Z)
Download STIX
Preview STIX
Peaklight is a sophisticated and stealthy memory-only malware that was discovered on August 22, 2024. It infiltrates systems using crafty techniques to evade detection and cause harm. This malicious software can penetrate your computer or device through suspicious downloads, emails, or websites, often without your knowledge. Once inside, it has the potential to steal personal information, disrupt operations, or even hold your data hostage for ransom. The malware employs DLL side-loading techniques, which allow it to execute infostealers like Cryptbot and SHADOWLADDER malware. These infostealers are harmful programs designed to extract sensitive information from infected systems. Additionally, Peaklight dynamically unpacks ZIP files and runs their contents in hidden directories, making it difficult for traditional anti-malware software to detect its presence and activities. Several samples of this malware were found with unique identifiers, including "Setup exe", "erefgojgbu", "L2 zip" under Cryptbot; "oqnhustu", "WebView2Loader dll" under LUMMAC V2; "Powershell" under Peaklight; and multiple files under SHADOWLADDER such as "cymophane doc", "WCLDll dll", "bentonite cfg", among others. Each of these components plays a specific role in the infection process, collectively enabling Peaklight to perform its malicious activities effectively and covertly.
Description last updated: 2024-10-17T12:12:43.511Z
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the Peaklight Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
Contagio
4 months ago