Welcome back to our Triage Thursday blog series! We’re excited to share this week’s detection Updateds with you. In these quick posts, we highlight the latest malware families detections that have been added.
New Families This Week
- Added detection and extraction for SnappyClient, Windows backdoor and stealer
- SnappyClient sample:
- Added detection for SharpHound, Windows hacktool
- SharpHound sample:
- Added detection for PEAS-ng, open-source tool for privilege escalation
- PEAS-ng sample:
- Added detection for AzureHound, tool for collecting Azure data
- AzureHound sample:
- Added detection for Venon, Windows banker
- Venon sample:
- Added detection for FrostStealer, Windows NodeJS stealer
- FrostStealer sample:
- Added detection for Kfos, Linux botnet
- Kfos sample:
- Added detection for Badpaw, Windows loader
- Badpaw sample:
- Added detection for PixRevolution, Android banking trojan
- PixRevolution sample:
- Added detection for Arsink, Android RAT
- Arsink sample:
- Added detection for Kimwolf, Android botnet
- Kimwolf sample:
- Added detection for Styx malware, Windows stealer
- StyxStealer sample:
Added Ransomware Family This Week
- CryptJoker sample:
Updates for Existing Families
- Updated detection and extraction of Bumblebee
- Bumblebee sample:
- Updated detection and extraction for Phorphiex malware loader
- Phorphiex sample:
- Updated detection for SkuldStealer, cross-platform stealer
- SkuldStealer sample:
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.