Welcome back to our Triage Thursday blog series! We’re excited to share this week’s detection updates with you. In these quick posts, we highlight the latest malware families detections that have been added.
New Families This Week
- Added detection and extraction for ChromeB family, Windows stealer
- ChromeB sample:
- Added detection and extraction for HTTPBot family, Windows botnet
- HTTPBot sample:
- Added detection and extraction for Ngioweb family, cross-platform botnet
- Ngioweb
- Ngioweb Linux samples:
- Ngioweb Windows sample:
- Added detection and extraction for DarkNimbus, cross-platform backdoor
- DarkNimbus
- DarkNimbus Windows sample:
- DarkNimbus Android sample:
- Added detection for WraithNET family, Windows trojan
- WraithNET sample:
- Added detection for Vo1d family, Android botnet
- Vo1d sample:
- Added detection for Brontok family, Windows worm
- Brontok sample:
- Added detection for Rahiwi family, Windows worm
- Rahiwi sample:
New Ransomware Detection
- Added detection for Eldorado, Windows ransomware
- Eldorado sample:
- Added detection for Phantom Ransomware, Windows ransomware
- Phantom Ransomware sample:
- Added detection for Elons, Windows ransomware
- Elons sample:
Updates for Existing Families
- Updated detection and extraction for Datzbro
- Datzbro sample:
- Updated detection and extraction for Phemedrone
- Phemedrone sample:
- Updated detection for Legion Loader
- LegionLoader sample:
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.