Welcome back to our Triage Thursday blog series! We’re excited to share this week’s detection updates with you. In these quick posts, we highlight the latest malware families detections that have been added.

New Families This Week

• Added detection for BillGates, Linux botnet
  • BillGates sample:
    • 251225-pa5thsar8z
• Added detection for ZetaRAT, Windows RAT
  • ZetaRAT sample:
    • 251225-pa938swndw
• Added detection for OrionLogger, Windows stealer
  • OrionLogger sample:
    • 251225-pa79mswndt
• Added detection for SpecRAT, Windows RAT
  • SpecRAT sample:
    • 251225-pbmdkawnez
• Added detection for ArtraDownloader, Windows downloader
  • ArtraDownloader sample:
    • 251225-pbl3sswney
• Added detection and extraction for Albiriox, Android banking trojan
  • Albiriox sample:
    • 251225-pbq2rawnft
• Added detection for PandaZeus, Windows banking trojan
  • PandaZeus sample:
    • 251225-pblr2awnew

Updates for Existing Families

• Updated detection for WraithNET, Windows trojan
  • WraithNET sample:
    • 251225-pa7ywaar81
• Updated detection for ValleyRAT, Windows RAT
  • ValleyRAT sample:
    • 251124-wy19kaan81

If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.

You can find us directly through the website, or using the Feedback option on an analysis report page.

Not signed up yet? Head over to tria.ge to register for a free account.