In this article, we describe how Hancitor compromises systems based on its infection chain observed in January and February 2021. We cover its unpacking routine, information gathering and command and control (C2) functions, and payload execution techniques. The malware Hancitor Hancitor (aka Chanitor) is a downloader which is used to gain initial access to a … Continue reading Hancitor Infection Chain Analysis: An Examination of its Unpacking Routine and Execution Techniques