Visit us at GITEX 2023 to witness the power of Hive Pro TEM Platform: Schedule a Meeting

A New Emerging CatB Ransomware Using DLL Hijacking to Evade Detection

Threat Advisories

A New Emerging CatB Ransomware Using DLL Hijacking to Evade Detection

Threat Level
Attack Report

For a detailed threat advisory, download the pdf file here

Summary

CatB is a ransomware that uses a technique called DLL hijacking to evade detection. It does this by injecting itself into the Microsoft Distributed Transaction Coordinator (MSDTC) service, a legitimate Windows process, and using that process to encrypt the victim’s files.

Sign up to receive our Weekly Threat Digest