Happy Thursday! It’s that time of the week again where we share our latest updates from the past week with you. As usual, we’ve got a few new families on Triage, some improvements to the existing ones, and more behavioral signatures to detect the unknown.
Check out what’s new below!
New Families This Week
- Added detection and extraction for CherryBlos Android malware family
- Added detection and extraction for Amadey v4.11
- Added detection and extraction for Metasploit macOS payload
- Added detection for Lumma stealer v3
Updates for Existing Families
- Updated TargetedApps attribute extraction for Octo family
- Updated IoC as fallback detection for Rhadamanthys stealer
Updates for Existing Behavioral Signatures
- Extended macOS behavioral rules for execution and evasion tactics
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
As always feel free to reach out to us any time directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.