The new samples included new layers of obfuscation and evasion techniques, such as moving malicious functionality to obfuscated native libraries, using certificate pinning for C2 communications, and performing a wide array of tests.
Updated Mandrake variants conceal main functionality using OLLVM, incorporate sandbox evasion, and anti-analysis techniques to prevent execution in environments operated by malware analysts.
[
Collection
]
[
|
...
]