The new malware family was called “UpdateAgent” by Microsoft’s 365 Defender Threat Intelligence Team, which charted its progression from a barebones information stealer to a second-stage payload distributor as part of various assault waves seen in 2021.
The malware installed the evasive and persistent Adload adware in the most recent campaign, but UpdateAgent’s ability to acquire access to a device could conceivably be used to retrieve other, perhaps more hazardous payloads.