Loader

BatLoader

First seen: 2022-02 • Status: active

Currently Active Threat

BatLoader tricks people through fake Google ads. When you search for software and click an ad, you might download malware instead of the real program.

Overview

BatLoader is a malware loader that uses malicious advertisements and SEO poisoning to distribute malware. It often delivers banking trojans and ransomware.

Also Known As

BATLOADER

How It Spreads

  • Malvertising
  • SEO poisoning
  • Fake software downloads

What It Does

  • Downloads additional malware
  • Delivers banking trojans
  • Installs ransomware

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Monitor for suspicious script execution
  • Watch for malvertising indicators

MITRE ATT&CK Techniques

T1105, T1566

If You're Infected

  1. 1.

    Scan for additional malware

  2. 2.

    Check for banking trojans

Related Malware

Bumblebee, Icedid

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices