Is Now on VT!
@Now_on_VTGet notified when interesting APT/FIN indicators of compromise appear on https://t.co/Sb3PFMresB. A threat intelligence project by @craiu
Sample is now on VT! 🚩Hash: 839f60efee25f07df7b23ba9d6bef892 🎯Malware name: Melofee 🔹Comment: Melofee, a C++ backdoor, enables data collection, process management, file handling, and shell access. Originally exposed by ExaTrack in March 2023 and attributed to the APT group…
Cool #WezRat report from @_CPResearch_ with most samples on @virustotal except for (5 of them). We'll be keeping an eye on those and let y'all known when they show up on VT! #AriaSepehrAyandehsazan aka #EmennetPasargad full report: research.checkpoint.com/2024/wezrat-ma…
We are currently monitoring 5937 hashes on @virustotal If you want us to keep an eye on any other missing hashes, DMs are open! 🙏
Sample is now on VT! 🚩Hash: 557bda3a9cd30126257ae2733dc51738 🎯Actor name: Meduza stealer v2.2 🔹Comment: On Christmas Eve, Resecurity's HUNTER (HUMINT) spotted the author of perspective password stealer Meduza has released a new version (2.2). This product has already…
Really great Earth Estries / SALT TYPHOON report from TrendMicro, but only 3/23 samples on @virustotal We'll be keeping an eye on the others and let y'all know when they show up on VT. #earthestries #salttyphoon trendmicro.com/en_us/research…
Interesting report on GoblinRAT from Solar, but no samples on @virustotal🧐No worries though, we're keeping an eye on them and let y'all know when they show up on VT!
Sample is now on VT! 🚩Hash: 561b29a5650ff7fe6e63fa19c29ee240 🎯Actor name: ScarCruft 🔹Comment: ScarCruft, also widely known as APT37 or Reaper APT, is an espionage group associated with North Korean state activities that target high-value individuals. The group has been active…
Sample is now on VT! 🚩Hash: c9a941a305f68d726b1e49b965b5812d 🎯Malware name: UnicornSpy 🔹Comment: At the beginning of September, our systems recorded a new distribution of malware aimed at stealing confidential data… 🌐URL: securelist.ru/unicorn-data-s… 🔎OnVT:…
Sample is now on VT! 🚩Hash: 823b079c75f4e6a5905d9eea9a60c62e1f0995bfc25764d1ba0407a5bd78c962 🎯Malware name: Pygmy Goat 🔹Comment: Pygmy Goat is a native x86-32 ELF shared object that was discovered on Sophos XG firewall devices, providing backdoor access to the device. The…
LibSophos.so rootkit (aka Pygmy Goat ncsc.gov.uk/static-assets/…) now on VT. Last observed on an device in May 2022. If anyone uncovers any other activity, we'd love to collaborate. Happy hunting! virustotal.com/gui/file/823b0… sophos.com/en-us/content/…
Sample is now on VT! 🚩Hash: 1906e7d5a745a364c91f5e230e16e1566721ace1183a57e8d25ff437664c7d02 🎯Actor name: Nomad Panda 🔹Comment: A backdoor that has been long associated with the Neeedleminer group (aka RedFoxtrot, Nomad Panda). The variant of Quickheal used in this campaign…
Sample is now on VT! 🚩Hash: a1045efd2ad4e4adac06966158f2f021a0f8bc87f6317324f45807d8121c0671 🎯Actor name: UAC-0050 🔹Comment: The government team responding to computer emergency events of Ukraine CERT-UA has been monitoring the activity of the UAC-0050 group for a long time.…
Nice report from UK NCSC on Pygmy Goat, a backdoor for Sophos appliances, but no samples on @virustotal 😞Worry not, we'll be keeping an eye on the hashes and let y'all know when they appear on VT! ncsc.gov.uk/static-assets/…
Sample is now on VT! 🚩Hash: 4c136270ca4c17edb77985aca570e291fa77abaaa48761f85e184892089164a6 🎯Actor name: Multiple 🔹Comment: Attackers using tools associated with Chinese espionage groups have breached multiple telecom operators in a single Asian country in a long-running…
Great research but sadly, no samples on VT. We'll be keeping an eye on these hashes and let y'all know when they show up on @virustotal #GoldenJackal
#ESETresearch investigated two previously undocumented toolsets used by the #GoldenJackal APT group, both of which target air-gapped systems. welivesecurity.com/en/eset-resear… 1/6
Sample is now on VT! 🚩Hash: c0d25429f924016765711cd860fd03f9 🎯Actor name: ScarCruft 🔹Comment: ScarCruft, also widely known as APT37 or Reaper APT, is an espionage group associated with North Korean state activities that target high-value individuals. The group has been active…
Sample is now on VT! 🚩Hash: f55b41ca475f411af10eaf082754c6e8b7a648da4fa72c23cbfea9fa13a91d88 🎯Actor name: YoroTrooper 🔹Comment: Cisco Talos assesses with high confidence that YoroTrooper, an espionage-focused threat actor first active in June 2022, likely consists of…
Sample is now on VT! 🚩Hash: b2d7c047dc1c7fb7074111128594c36e 🎯Actor name: ScarCruft 🔹Comment: ScarCruft, also widely known as APT37 or Reaper APT, is an espionage group associated with North Korean state activities that target high-value individuals. The group has been active…
United States Trends
- 1. Mike 1,84 Mn posts
- 2. Serrano 239 B posts
- 3. Canelo 16,5 B posts
- 4. #NetflixFight 72,1 B posts
- 5. Father Time 10,7 B posts
- 6. #netflixcrash 15,8 B posts
- 7. Logan 78,7 B posts
- 8. He's 58 25,9 B posts
- 9. Rosie Perez 14,9 B posts
- 10. ROBBED 102 B posts
- 11. #buffering 10,9 B posts
- 12. Boxing 299 B posts
- 13. Shaq 16,2 B posts
- 14. My Netflix 83,1 B posts
- 15. Roy Jones 7.170 posts
- 16. Tori Kelly 5.246 posts
- 17. Ramos 69,8 B posts
- 18. Barrios 50,6 B posts
- 19. Muhammad Ali 18,4 B posts
- 20. Cedric 22 B posts
Something went wrong.
Something went wrong.