LevelBlue Labs: Indicators of Compromise for SquidLoader Malware

Get Your Free Copy Now

Download our free paper, Indicators of Compromise for Squidloader, to access information on associated indicators for a new, highly evasive loader targeting Chinese organizations.

LevelBlue Labs has discovered a new loader that is being delivered to specific targets through phishing attachments. A loader is a type of malware used to load second-stage payload malware onto a victim's systems.

LevelBlue Labs has named this malware 'Squidloader' given its clear efforts at decoy and evasion. Squidloader was first observed in campaigns in late April 2024, and it is predicted it has been active for at least a month prior.

For more information about Squidloader and what LevelBlue Labs has discovered, please read our blog.