Welcome to another Triage Thursday blog post. This is where we talk about the latest updates that have been rolling out to our sandbox over the past week. If you’re new here, the Triage Thursday series aims to share what we’ve been up to each week. Be sure to follow our blog if you’d like to catch up on our latest malware detections or any cool features. As usual, we’ve made several additions and changes to detections and configuration extractors and expanded our coverage to include some new malware families.
Let’s check out what we’ve got for you this week:
New Families This Week
- Added detection and extraction for Spyagent Android malware
- Added detection and extraction for Berbew family, Windows backdoor
Updates for Existing Families
- Updated detection and extraction for SystemBC x86 variant
- Updated extraction for recent Octo Android banking trojan
Updates for Existing Behavioral Signatures
- Extended Credential Access and Discovery Techniques for Linux from the Mitre Att&ck v15.1
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.