It’s Thursday again, so it’s time for our weekly Triage updates roundup! We’ve just released more updates to family detection, including updates to behavioral signatures and configuration extractors. Check out today’s post for all the latest updates from the past week.
New Families This Week
- Added detection and extraction for Nightingale stealer Windows malware family
- Added detection for Floxif aka Floodfix Windows malware family
- Added detection and extraction for Sharp Stealer and Sharp RAT and avoid overlap detection with BlackGuard Windows malware
- Added detection INC. Ransomware Windows family
- Added detection for Fickle Stealer Windows family
- Added detection and extraction for RafelRAT open source Android RAT
Updates for Existing Families
- Updated detection and extraction for Phemedrone stealer and avoid overlap with Nightingale stealer
- Updated detection and extraction for Strela stealer and avoid false positive cases
- Updated detection for the Jaskago family
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.