Happy New Year to our beloved Triage Sandbox community! We are delighted to have you with us for Triage Thursday. It’s a pleasure to kick off the first week of 2025 together, and we hope you are all doing wonderfully. If you’re new to this series, a warm welcome to you! This is the perfect spot where we share all the fun and exciting updates from our Triage Sandbox each week.
So, grab your favorite cozy drink, get comfy, and let’s jump into this week’s updates together!
New Families This Week
- Added detection and extraction for DroidBot, Android RAT
- Added detection and extraction for NoviSpy, Android spyware
- Added detection and extraction for the latest version of Zloader v2.9.4.0, Windows trojan
- Added detection and extraction for new version of SpyLoan, Android spyware
- Added detection for EagleMsgSpy, Android surveillance tool
- Added detection for BlackShades family, Windows trojan
Updates for Existing Families
- Updated detection and extraction for latest Stealerium family, Windows stealer
- Updated detection for latest Healer dropper, Windows loader
- Updated detection for latest Renamer family, Windows worm
Updates for Existing Behavioral Signatures
- Extended behavioral detection for anti-detection behavioral based on Mitre Att&ck v15.1
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.