MintsLoader Mayhem: Malware Campaigns Targeting Energy and Legal Sectors with Sneaky Tactics

MintsLoader is the latest malware loader causing havoc, distributing StealC and BOINC under the guise of fake CAPTCHA pages. Cybersecurity firm eSentire detected this campaign targeting the energy and legal sectors in the U.S. and Europe. Keep your spam filters on high alert, as MintsLoader is lurking in your inbox.

3P
Published: January 27, 2025 7:30 amAdded: January 26, 2025 at 11:55 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

**_Ah, MintsLoader, the malware that delivers secondary payloads like a shady delivery service, offering up both info-stealers and legitimate software, all wrapped up in a PowerShell bow. It’s like ordering a pizza and finding out your toppings are a mix of anchovies and a tax audit. Truly, the gift that keeps on giving!_**

Key Points:

– MintsLoader, a PowerShell-based malware, is delivered via spam emails linked to ClickFix pages or JScript files.
– Target industries include electricity, oil, gas, and legal services in the US and Europe.
– Malware leverages fake CAPTCHA prompts to trick users into executing PowerShell scripts.
– MintsLoader deploys StealC, a MaaS info stealer, avoiding infection in certain countries.
– The campaign exemplifies the proliferation of malware loaders like JinxLoader and Astolfo Loader.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?