DiceLoader

DiceLoader malware has been used by the FIN7 threat actor group since 2021.

Known Variants

Lizar, Icebot, Dice Backdoor

Mitigation Strategies

DiceLoader is often delivered via phishing emails and is used to install other malicious payloads, including banking trojans. Effective mitigation strategies include advanced email filtering to block malicious attachments and URLs. Endpoint security tools must be kept updated to detect and block known DiceLoader variants. Regular system patching also helps close vulnerabilities exploited by this malware.

Targeted Industries or Sectors

DiceLoader has been primarily targeted at financial institutions but has been observed in campaigns against other sectors with valuable data.

Associated Threat Actors

DiceLoader is used by financially motivated cybercriminals, typically as part of larger campaigns involving banking malware and ransomware.

References

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Hunt Intelligence, Inc.