Summary: A variant of the Gootloader malware called GootBot has been discovered by the IBM X-Force team. GootBot is used for lateral movement within infected networks and poses a heightened risk of ransomware attacks. The malware is delivered as a payload following a Gootloader infection and is capable of receiving command-and-control tasks in the form of encrypted PowerShell scripts. GootBot currently maintains zero antivirus detections, making it difficult to detect. Security measures recommended include keeping antivirus software up to date and closely monitoring network traffic and scheduled tasks.

Hashtags: #Gootloader #GootBot #malware #ransomware #cybersecurity

https://www.infosecurity-magazine.com/news/gootbot-heightens-risk-of-post/