DePriMon Malware Registers Itself as Windows Default Print Monitor To Execute Commands With SYSTEM Privileges


DePriMon Malware

A new malicious downloader dubbed “DePriMon” registers itself as fake Windows Default Print Monitor to achieve persistence and to execute commands as a SYSTEM user.

The DePriMon malware found to be active at least from March 2017, it was detected first in a private company based in Central Europe. It is well-written malware and the malware authors use various encryption techniques which make the analysis more difficult.

Read more…