A threat campaign active since January customizes long-used droppers to infect victim machines and lift credentials and other data from browsers, Cisco Talos says. The objective is to hide in the background of infected systems in order to steal user passwords, track online habits and hijack personal information. Researchers say the adversaries use injection techniques that have been employed for many years, but with new, custom capabilities that are making them difficult for anti-virus protections to detect. The dropper campaigns use obfuscation chains to elude modern AV protections.
Source: https://threatpost.com/malware-steals-info-with-advanced-obfuscation/150280/