Researchers have discovered a new sample of the FormBook malware, with a never-before-seen dropper. The new dropper has capabilities to better achieve persistence on systems and obfuscation to avoid detection, researchers said. FormBook, a browser form-stealer and keylogger, has been under active development since it popped up on hacking forums in 2016. In 2017, the malware was used to target aerospace firms, defense contractors and some manufacturing organizations in the United States and South Korea.
Source: https://threatpost.com/new-formbook-dropper-harbors-persistence/145614/