| Title |
Published |
Tags |
Description |
Number of indicators |
| Analyzing the Mekotio Trojan |
Aug. 30, 2024, 8:14 a.m. |
|
The analysis delves into the Mekotio Trojan, a sophisticated malware that employs a PowerShell dropper to execute its payload. Th… |
2 |
| HZ Rat backdoor for macOS harvests data from WeChat and DingTalk |
Aug. 27, 2024, 3:12 p.m. |
|
A version of the HZ Rat backdoor targeting users of China’s WeChat and DingTalk was uploaded to VirusTotal in July 2023 and was n… |
10 |
| New Widespread Extension Trojan Malware Campaign |
Aug. 7, 2024, 8:33 a.m. |
|
This report discusses a widespread polymorphic malware campaign that forcefully installs malicious browser extensions on endpoint… |
0 |
| BlankBot: A new Android banking trojan |
Aug. 6, 2024, 10:04 a.m. |
|
A new Android banking trojan called BlankBot has been discovered. Discovered by Intel 471 researchers in July 2024, BlankBot prim… |
0 |
| Distribution of AsyncRAT Disguised as Ebook |
July 10, 2024, 9:22 a.m. |
|
This analysis covers the distribution of AsyncRAT malware disguised as an ebook. The compressed file contains a malicious LNK and… |
5 |
| A New Compact Variant Discovered |
June 26, 2024, 8:23 a.m. |
|
Security researchers at Cleafy Labs detected a resurgence of the Medusa banking trojan, which targets Android devices for on-devi… |
50 |
| China-Nexus Threat Group ‘Velvet Ant’ Abuses F5 Load Balancers for Persistence |
June 18, 2024, 9:10 p.m. |
|
|
5 |
| New banking trojan “CarnavalHeist” targets Brazil with overlay attacks |
May 31, 2024, 2:27 p.m. |
|
Cisco Talos has been observing an active campaign targeting Brazilian users with a new banking trojan dubbed 'CarnavalHeist'. The… |
61 |
| AllaSenha: AllaKore variant leverages Azure cloud C2 to steal banking details in Latin America |
May 31, 2024, 12:22 p.m. |
|
Earlier in May, a security product detected a malicious payload aimed at stealing credentials required to access Brazilian bank a… |
61 |
| Banking trojan unleashed: Observing emerging global campaigns |
May 20, 2024, 9:40 a.m. |
|
IBM's X-Force has been tracking large-scale phishing campaigns distributing the Grandoreiro banking trojan, likely operated as a … |
18 |
| Leveraging DNS Tunneling for Tracking and Scanning |
May 13, 2024, 7:12 p.m. |
|
This article presents a case study on new applications of domain name system (DNS) tunneling PaloAlto Unit42 have found in the wi… |
63 |
| Linux Trojan - Xorddos with Filename eyshcjdmzg |
May 1, 2024, 7:55 p.m. |
|
This analysis examines a recurring Linux trojan called Xorddos, which is a distributed denial-of-service (DDoS) malware. It provi… |
11 |