AL2021_28 New Malware Targets Windows Subsystem for Linux to Evade Detection (17th September 2021)

Several malicious samples have been created for the Windows Subsystem for Linux (WSL) to compromise Windows systems, highlighting a sneaky method that allows the attackers to stay rogue from detection by popular anti-malware engines.


The “distinct tradecraft” marks the first instance where a threat actor has been observed to be abusing WSL to install successful payloads.