The malware known as GootLoader continues to be in active use by threat actors looking to deliver additional payloads to compromised hosts.
“Updates to the GootLoader payload have resulted in several versions of GootLoader, with GootLoader 3 currently in active use,” cybersecurity firm Cybereason said in an analysis published last week.
“While some of the particulars of GootLoader payloads have