A significant malware operation has been discovered utilizing a flawed Windows driver linked to Adlice’s product collection to bypass detection efforts and deploy the Gh0st RAT malware.
“To enhance evasion of detection, the perpetrators intentionally created numerous variations (with distinct hashes) of the 2.0.2 driver by altering certain PE components while preserving the authenticity of the signature,” Check Point