It’s that time of the week again!! We’re here with a Triage Thursday post to share with you what’s new this week. As usual, our team has been working hard to make malware hunting easy peasy. We’ve added more detections, behavioral signatures, and configuration extraction for the latest trending families to make your job just got a whole lot easier!
We really hope you enjoy these updates and find them useful! Remember, we’re always here to help you out.
Alright, let’s dive in and see what we’ve got for you this week!
New Families This Week
- Added detection and extraction for the Koi loader/stealer family
- Added detection and extraction for JaskaGo cross-platform malware on Windows and macOS
- Added detection and extraction for Masepie malware Python script
- Added extraction support for the Xehook stealer family
Updates for Existing Families
- Updated extraction for recent Joker Android malware family
- Updated extraction for Pikabot beta version 1.8.32
- Updated detection and extraction for the Phorphiex stealer family
Updates for Existing Behavioral Signatures
- Extended more Android signatures and TTPs for collection, evasion, impact, and credential access tactics
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.