| Title |
Published |
Tags |
Description |
Number of indicators |
| Zharkbot Strings |
Sept. 3, 2024, 8:09 a.m. |
|
Zharkbot is a C++ downloader with extensive anti-analysis and anti-sandbox features. It uses in-line string encryption and API ca… |
2 |
| Threat Tracking: Analysis of Lilith RAT ported to AutoIt Script |
Aug. 23, 2024, 9:41 a.m. |
|
In April 2024, S2W's Threat Research and Intelligence Center TALON analyzed a malicious LNK file disguised as a list of tax evasi… |
33 |
| Double Trouble: Latrodectus And ACR Stealer Observed Spreading Via Google Authenticator Phishing Site |
Aug. 20, 2024, 9:06 a.m. |
|
The Cyble Research and Intelligence Lab (CRIL) discovered a sophisticated phishing website mimicking Google Safety Centre, design… |
15 |
| Fake update puts visitors at risk |
July 24, 2024, 8:09 a.m. |
|
This intelligence report discusses SocGholish, a JavaScript downloader used by threat actors to deliver malware payloads disguise… |
10 |
| SmokeLoader Evolution Through The Years |
July 3, 2024, 11:54 a.m. |
|
This report provides an in-depth analysis of the evolution of SmokeLoader, a prominent malware downloader that has been active si… |
11 |
| DBatLoader Distributed via CMD Files |
June 27, 2024, 9:26 a.m. |
|
A cybersecurity analysis has identified a malicious operation involving the distribution of a downloader, dubbed DBatLoader or Mo… |
0 |