This technical update provides a breakdown of an XLoader (formerly known as Formbook) malware infection recorded on January 15, 2026. The report includes critical forensic resources such as packet captures (PCAP), malware samples, and a detailed list of Indicators of Compromise (IOCs) to assist security researchers in identifying and mitigating this specific threat.
Researchers are advised that the associated zip files are password-protected using a new credential scheme available on the site's 'about' page. This data set is particularly valuable for analyzing the communication patterns and command-and-control (C2) infrastructure typically utilized by the XLoader infostealer family.
Top comments (0)