A New Emerging CatB Ransomware Using DLL Hijacking to Evade Detection

Threat Level – Red | Vulnerability Report
Download PDF

CatB is a ransomware that uses a technique called DLL hijacking to evade detection. It does this by injecting itself into the Microsoft Distributed Transaction Coordinator (MSDTC) service, a legitimate Windows process, and using that process to encrypt the victim’s files.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox