ALCATRAZ Obfuscated DOUBLELOADER Backdoor

    Tuesday, June 3, 2025 In: Threat Research Print

    Date: 06/03/2025

    Severity: Medium

    Summary

    "ALCATRAZ Obfuscated DOUBLELOADER Backdoor" is a technical analysis detailing a newly identified malware family called DOUBLELOADER, observed in conjunction with the RHADAMANTHYS infostealer. The malware is notable for using ALCATRAZ, an open-source obfuscator originally from the game hacking community but now adopted in cybercrime and targeted attacks.

    Indicators of Compromise (IOC) List

    Hash

    3050c464360ba7004d60f3ea7ebdf85d9a778d931fbf1041fa5867b930e1f7fd

    Gurucul Threat Detection and Incident Response (TDIR) Queries for Detection

    Detection Query 1 : 

    sha256hash IN ("3050c464360ba7004d60f3ea7ebdf85d9a778d931fbf1041fa5867b930e1f7fd")

    Reference:    

    https://www.elastic.co/security-labs/deobfuscating-alcatraz


    Tags

    MalwareDOUBLELOADERALCATRAZBackdoorInfostealerRhadamanthys

    « Previous ArticleNext Article »

    Comments

    No records to display

    Looking for Something?
    Threat Research Categories:
    Tags

    Privacy & Security StatementTerms & Conditions
    Copyright © 2025 by Gurucul - All rights reserved.