Hello there! Welcome to another Triage Thursday blog post. If you’re new here, this is the perfect spot to stay up-to-date on all the malware detection updates, new features, and noteworthy happenings in the Triage sandbox for the past week. Whether you’re a regular reader or just joining us for the first time, we’re so happy to have you here. We hope this is helpful and informative for you. Thanks for being a part of our community!
Now, let’s dive straight in!
New Families This Week
- Added detection and extractor for Enchant Android malware
- Added detection for Xavier Android trojan AD library family
- Added detection for BadMirror Android infostealer family
Updates for Existing Families
- Updated Meduza stealer detection
- Updated detection and extractor for Stealc stealer recent variant
- Fixed Raccoon V2 extractor for missing c2s
- Fixed signatures and rules to prevent FP for AxBanker
Updates for Existing Behavioral Signatures
- Added additional MacOS Anti-VM signatures
If you have any feedback, questions, or issues about the sandbox feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
As always feel free to reach out to us any time directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.