Zloader, also known as Terdot, DELoader, or Silent Night, is a modular trojan with upgraded RSA encryption. It uses junk code, hashing API imports, and string encryption to prevent malware analysis. Zloader first emerged in 2015 and was publicly disclosed in 2016. It resurfaced in September 2023 with a new version. The loader module of Zloader has been significantly modified and now includes RSA encryption. There are fifteen distinct variants of Zloader, all using the same RSA public key. The latest version of Zloader is compiled for 64-bit Windows systems. Zloader employs obfuscation techniques to hinder malware investigation. hashtags: #Zloader #malware #RSAencryption

https://cybersecuritynews.com/re-vamped-zloader-windows/