It’s Thursday, so it’s time for another entry in our weekly update blog series. This week, our main focus is on family signatures and further improvements to behavioral signature support for Linux. Take a look at the list below for this week’s featured content:
New Families This Week
- Added detection and DGA extraction support for Simda family, Windows trojan
- Added detection and extraction for Traca GPS tracker, Android stalkerware
- Added detection for Renamer aka Grenam family, Windows worm
Updates for Existing Families
- Updated detection and extraction for a newer variant of Xehook stealer
- Updated detection and extraction support for XenoRat samples
Updates for Existing Behavioral Signatures
- Extended Defense Evasion procedures for Linux from Mitre Att&ck v15.1
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.