Blog.

Welcome to the Triage Sandbox blog! On this Triage Thursday, we are exploring a roundup of the latest and most impactful malware families that we have encountered.

We would love to hear your thoughts and feedback, so please don’t hesitate to share with us! Now, let’s take a look at the latest threats, go over our malware family detection, and delve into configuration extraction insights to help you effectively hunt these malware families.

New Families This Week

• Added detection and extraction for DCHSpy, Android surveillanceware

  • DCHSpy Analysis
    • 250731-r1wdwabk3w
    • 250731-r1195abk3z

• Added detection and extraction for CyberStealer, Windows stealer

  • CyberStealer Analysis
    • 250731-rvetyaxnv6
    • 250624-mk6sfs1ybv

• Added detection and extraction for Dacic family, Windows trojan

  • Dacic Analysis
    • 250731-r5ddvsv1b1
    • 250731-r5hzcav1cy

• Added detection and extraction for Blackatter family new version, Windows ransomware

  • BlackMatter Analysis
    • 250731-r74ntsxp18
    • 250731-r7z1msxp15

• Added detection and extraction for PirateStealer family, Windows stealer

  • PirateStealer Analysis
    • 250731-rzttnaxnz5
    • 250731-rznyeav1as

• Added detection for MythStealer family, Windows stealer

  • MythStealer Analysis
    • 250731-r3xpqabk6z
    • 250731-r3x1gsbk61

• Added detection for DuplexSpyRAT malware, Windows stealer

  • DuplexSpyRAT Analysis
    • 250731-r4fgtsbk8t

• Added detection for Coffloader malware, Windows loader

  • Coffloader Analysis
    • 240608-w5sk1afc54
    • 250731-r6qqksbl9s

If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.

You can find us directly through the website, or using the Feedback option on an analysis report page.

Not signed up yet? Head over to tria.ge to register for a free account.