ESET Research: A deep dive into EDR killers - a cornerstone of modern ransomware operations

AI Briefing

• – EDR killers abuse vulnerable drivers to evade detection, affiliates shape tooling diversity, and some exhibit AI-assisted generation traits.
• – Attackers prioritize short, reliable windows to run encryptors, avoiding payload modification.
• – ESET's analysis of 90 EDR killers in the wild reveals a shift in tactics, moving beyond traditional driver-centric approaches.