What's new arround internet
Last one

Src Date (GMT) Titre Description Tags Stories Notes
Minerva.webp 2022-11-08 14:18:48 New updated IceXLoader claims thousands of victims around the world (lien direct) >IceXLoader was discovered last June by FortiGuard Labs. It is a commercial malware used to download and deploy additional malware on infected machines. While the version discovered in June (v3.0) looked like a work-in-progress, we recently observed a newer v3.3.3 loader which looks to be fully functionable and includes a multi-stage delivery chain.  Figure 1. […] Malware ★★★
Minerva.webp 2022-08-25 10:23:06 STOP/DJVU Ransomware (lien direct) >STOP/DJVU ransomware has been with us since 2019. New versions are released periodically; however, the new STOP/DJVU ransomware versions usually focus on adding new encrypted file extensions. There were almost 200 different encryption extensions observed in the wild through 2019 alone.    This ransomware contains a lot of unused code, probably inserted to delay malware […] Ransomware Malware ★★★
Minerva.webp 2022-08-16 14:24:32 Malware Evasion – Memory Injection (lien direct) >This is the third part of our malware evasion techniques series. If you'd like, you can also review our other articles on sandbox evasion and Living off the Land. This article introduces a set of evasion techniques wherein malware takes advantage of running processes. These techniques fall under the broad category of malware evasion techniques known as Malware ★★★
Minerva.webp 2022-05-19 16:53:56 What makes Ransomware so different from other malware and cyber threats? (lien direct) What makes Ransomware so different from other malware and cyber threats? Ransomware Malware
Minerva.webp 2022-05-09 14:40:29 (Déjà vu) Malware evasion techniques - Obfuscated Files and Information (lien direct) Malware evasion techniques - Obfuscated Files and Information Obfuscation is one the many techniques used by malware to evade static analysis methods and traditional anti-malware solutions which rely on hashes and strings for malware detection and analysis. This post is part of our series on malware evasion techniques. Feel free to read the other posts in this series which discussed Living off the Land, Sandbox Evasion, and detecting security and forensic tools. Malware
Minerva.webp 2022-05-03 15:37:31 A new BluStealer Loader Uses Direct Syscalls to Evade EDRs (lien direct) A new BluStealer Loader Uses Direct Syscalls to Evade EDRs BluStealer malware was first detected in May 2021 by James_inthe_box. Back then, it was delivered through a phishing mail, either as an attachment or a Discord link leading to the malware download URL. According to Avast 2021 analysis, it “consists of a core written in Visual Basic and the C# .NET inner payload(s). The VB core reuses a large amount of code from a 2004 SpyEx project. Its capabilities to steal crypto wallet data, swap crypto addresses present in the clipboard, find and upload document files, exfiltrate data through SMTP and the Telegram Bot API, as well as anti-analysis/anti-VM tactics”  Malware Guideline
Last update at: 2024-07-05 01:07:29
See our sources.
My email:

To see everything: Our RSS (filtrered) Twitter