China-Linked Threat Actor Taps ‘Peculiar’ Malware to Evade Detection

China-Linked Threat Actor Taps 'Peculiar' Malware to Evade Detection

April 2, 2024 at 07:08PM

UNAPIMON meticulously disables hooks in Windows APIs to prevent the detection of malicious processes.

Based on the meeting notes provided, it seems that UNAPIMON operates by systematically disabling hooks in Windows APIs that are used for identifying potentially harmful processes. This implies that UNAPIMON is designed to disrupt traditional methods of detecting malicious activities within the Windows operating system.

Full Article