Sneaky Shellcode: Windows Fibers Offer EDR-Proof Code Execution

Two new code-execution techniques, Poison Fiber and Phantom Thread, take advantage of a little-known Windows OS workhorse to sneak shellcode and other malware onto victim machines.

https://www.darkreading.com/application-security/sneaky-shellcode-windows-fibers-edr-proof-code-execution