MaldevAcademyLdr.1 – Advanced EXE Loader Unveiled

It is our latest innovation in cybersecurity tools. This EXE loader goes beyond conventional designs, offering advanced features for robust system interactions.

With a focus on enhanced security and sophisticated integration capabilities, it’s set to revolutionize the way users interface with executable files.

Maldev Academy’s October update saw several interesting modules being released to our users. One of them was our DLL loader that was successfully tested against several EDRs including MDE and Crowdstrike.

We promised to release an EXE version of the loader on GitHub.

Features

Indirect-Syscalls using an improved HellsHall implementation.
Dll Unhooking via the \KnownDlls\ directory
Payload injection by chunking
Using custom AES encryption library.
Executing payload via Thread Pool APIs.
Obfuscating IAT using API hashing and API camouflage.
CRT library independent.

Demo

ExecutePeFromPngViaLNK – Advanced Execution Of Embedded PE Files via PNG And LNK

October 29, 2024

In "Cyber security"

HellBunny : Advanced Shellcode Loader For EDR Evasio

December 24, 2024

In "Malware"

Awesome EDR Bypass : A Comprehensive Guide For Ethical Hackers

January 2, 2025

In "Cyber security"

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.