NUMOZYLOD Malware Exploits MSIX Installers for Dangerous Code Execution

Recent malware campaigns have seen a rise in trojanized MSIX installers targeting users seeking business software. These attacks, orchestrated by the threat actor “eugenfest,” leverage a PowerShell script named NUMOZYLOD to download additional malware payloads.  NUMOZYLOD is part of a MaaS operation distributing various malware, including ICEDID, REDLINESTEALER, CARBANAK, LUMMASTEALER, and ARECHCLIENT2, underscoring the growing … Continue reading NUMOZYLOD Malware Exploits MSIX Installers for Dangerous Code Execution