PhantomVAI: custom loader built on an old RunPE utility used in worldwide campaigns
ID: 15492353-84b9-5bc8-989f-478665fbff95
STIX ID: report--15492353-84b9-5bc8-989f-478665fbff95
Feed Name: Intrinsec Blog
Threat Score
PhantomVAI is described as a custom loader leveraging an older RunPE technique and has been observed in worldwide campaigns. The note indicates active malware distribution but provides no technical analysis, indicators of compromise, or attribution.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.