DonutLoader

DonutLoader BAT based kernel sideloading. Kernel Sideloader v5.bat. BlanketDaughter photoSatoshi base64 variables. AV bypass.

Threat Profile
Type Loader
Programming LanguageBAT/PowerShell
C2 ProtocolHTTP
First Seen2023
Targets Küresel
Purpose / Capabilities
  • loader
No C2 servers have been identified for this family yet.

Research Reports (1)

Medium

DonutLoader -- Kernel Sideloader v5.bat, BlanketDaughter+photoSatoshi Base64 Değişken İsimleri | Orta

DonutLoader 1MB Kernel Sideloader v5.bat kernel seviyesi DLL sideloading. BlanketDaughter photoSatoshi base64 encoded config degiskenleri.

Read Report →