|
Title: Earth Freybug Uses UNAPIMON for Unhooking Critical APIs Post by: HCK on April 02, 2024, 04:05:15 pm Earth Freybug Uses UNAPIMON for Unhooking Critical APIs
This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child processes from being monitored via a new malware we’ve discovered and dubbed UNAPIMON. Source: Earth Freybug Uses UNAPIMON for Unhooking Critical APIs (https://www.trendmicro.com/en_us/research/24/d/earth-freybug.html) |