Welcome back to our Triage Thursday blog series! We’re excited to share this week’s detection updates with you. In these quick posts, we highlight the latest malware families detections that have been added.
New Families This Week
- Added detection and extraction for XillenStealer, Windows stealer
- XillenStealer sample:
- Added detection and extraction for GhostChat, Android spyware
- GhostChat sample:
- Added detection and extraction for LotusLite backdoor, Windows APT
- LotusLite sample:
- Added extraction support for VertexNET, Windows stealer
- VertexNET samples:
- Added detection for DynoWiper, Windows file wiper.
- DynoWiper samples:
Added Detection for Windows Stealer Families
- VegaStealer sample:
- NexusRAT sample:
- RemoteX sample:
- NitroStealer sample:
- CHStealer sample:
- KematianStealer sample:
- ZealerStealer sample:
- HornetStealer sample:
- GhostStealer sample:
- FrankenstainStealer sample:
- DraculaStealer sample:
New Ransomware Detection
Updates for Existing Families
- Updated detection for GhostSocks latest samples
- GhostSocks sample:
- Updated detection and extraction for recent PhantomCard
- PhantomCard sample:
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.