Welcome back to our Triage Thursday blog series! We’re excited to share this week’s detection Updateds with you. In these quick posts, we highlight the latest malware families detections that have been added.
New Families This Week
- Added detection for LiteLLMStealer, LLM prompt injection
- LiteLLMStealer sample:
- Added detection for HadesStealer, Windows NodeJS stealer
- HadesStealer sample:
- Added detection for SparkStealer family, Windows Java based stealer
- SparkStealer sample:
- Added detection for A0Backdoor, Windows backdoor
- A0Backdoor sample:
- Added detection for NimPlant, Windows backdoor written in Nim
- NimPlant sample:
- Added detection fro XiebroC2, Windows implant
- XiebroC2 sample:
- Added detection for RoningLoader, Windows loader
- RoningLoader sample:
- Added detection for Konni, Windows RAT
- Konni sample:
- Added detection for LANDFALL, Android spyware
- LANDFALL sample:
Added detection for Windows stealer:
- NetherStealer sample:
- ItroublveBOTStealer sample:
- InzStealer sample:
- InfectedStealer sample:
- EliteStealer sample:
- DoStealer sample:
- DotStealer sample:
- D2Stealer sample:
- CollectsStealer sample:
Added Ransomware Family This Week
- Charon sample:
Updates for Existing Families
- Updated detection for Kimwolf botnet, Linux version
- Kimwolf sample:
- Updated detection and extraction for AdaptixC2 recent samples, Windows stealer
- AdaptixC2 sample:
If you have any feedback, questions, or issues about Triage feel free to reach out to us any time - we do our best to respond to all feedback but even if we can’t get back to you straight away your files will go into our list of things to review and help us prioritize tasks.
You can find us directly through the website, or using the Feedback option on an analysis report page.
Not signed up yet? Head over to tria.ge to register for a free account.