Ransomware operators are hiding malware deeper in installer packages


We are seeing a wave of new NSIS installers used in ransomware campaigns. These new installers pack significant updates, indicating a collective move by attackers to once again dodge AV detection by changing the way they package malicious code.

Source: Ransomware operators are hiding malware deeper in installer packages