This is not the first time the “Heap Feng Shui” technique was used by a malware. Last June, a Trojan bearing the same characteristics was caught by the Trend Micro Incident Response Team (TMIRT). It was detected as TROJ_DLOADER.IGR. This latest discovery thus tells us that more malware authors will be joining this bandwagon soon (I can just imagine malware toolkits in the production pipelines already). It also underscores the fine line that separates the good guys from the bad ones, given the fact that the initial concept was presented to help improve security.
Trend Micro advises users to keep their security applications updated and patched with the latest fixes to avoid getting affected with threats similar to these.
Additional data provided by Ivan Macalintal and Ryan Flores.