Analysis of New Wave of Iced ID malware
Iced ID is a banking trojan malware which allows attackers to utilize it to steal banking credentials of the targeted victims. Iced ID aka BokBot mainly targets businesses and steals payment...
1 Pandemic, 3 Threat Groups, 1 new Ransomware and a Vulnerability, what do you get? A recipe for a great hack!
April 20, 2020
Introduction: As the world plunges into the pandemic chaos, cyber attackers show little or no remorse on attacking enterprises, hospitals, and critical infrastructures using sophisticated techniques. FBI has warned against the rise of cyber attacks across the globe taking advantage of the crisis. One such sophisticated technique is to exploit the vendors product vulnerability in […]
Analysis of HTML Phishing Campaign
Phishing attack is a kind of social engineering where it's the practice of sending fraudulent communications that appear to come from a reputable source. It is usually done through e-mail with...
Analysis of new wave of Qakbot Campaign
QakBot (a.k.a QBot) is one of the leading banking trojans, it still continues to grow and develop, with more capabilities and new techniques. Its main purpose is to steal banking data (banking...
Smokeloader – After a decade of damage and mayhem
Smoke Loader, also known as Dofoil (loader), is a modular malware mainly utilized to download other malware to infected machines. LMNTRIX CDC observed the initial version of Smokeloader in 2011...
Analysis of the new wave of CVE-2017-0199 Exploit Campaign
What's the CVE-2017-0199 Exploit? The way Microsoft Office and WordPad parse specially crafted files results in a remote code execution vulnerability. An attacker who successfully...
Analysis of JAR Adwind Campaign
Adwind RAT (Remote Access Trojan) is a cross-platform, multi-functional remote access program which is distributed through a single malware-as-a-service platform. One of the main features that...
Analysis of Remcos JS Campaign
Remcos is a remote access trojan malware which is used to take remote control over infected PCs. Once Remcos RAT infects the system, a threat actor has the ability to execute remote commands on...
Analysis of New Wave Bumblebee XLSM Campaign
Bumblebee malware is a relatively new type of malware downloader that has been linked to several cybercriminal groups. Previous waves of Bumblebee were delivered through ISO files that contain a...
Analysis of VBS LokiBot Campaign
This article introduces the latest wave of VBS LokiBot campaign, and it's subsequent analysis. One of the most prevalent malware families that the LMNTRIX CDC has recently seen is called LokiBot....
Analysis of Netwire RAT
The NetWire RAT is malicious remote access trojan that emerged in the wild in 2012. This multi-platform malware was developed by World Wired Labs, and the program has since undergone several...
Loading...