Silobreaker Update 2021年08月13日
インターネット上でトレンドとなっている脅威アクター、マルウェアのランキングです。
Silobreaker の API を使用して作成しています。このページに関する説明はこちらをご覧ください。
Threat Actor
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Gorgon Group |  |
2 | 2 | 2 |
| Syrian Electronic Army | |
1 | 1 | 1 |
| Cosmic Lynx | |
1 | 1 | 1 |
| Aggah | |
1 | 1 | 1 |
| Varrius | |
1 | 1 | 1 |
Malware
| Name | Move | Volume 1d | Volume 7d | Volume 30d |
|---|---|---|---|---|
| Magniber Ransomware |  |
16 | 16 | 16 |
| ServHelper Backdoor |  |
5 | 5 | 5 |
| Amadey | |
4 | 4 | 4 |
| FluBot Android Banking Trojan |  |
9 | 11 | 18 |
| Chaos Malware | |
8 | 12 | 12 |
Related documents
- ThreatActor:Gorgon Group
- Aggah Using Compromised Websites to Target Businesses Across Asia, Including Taiwan Manufacturing Industry
- Published by ThreatStream Blog (2021-08-13 00:00:00)
- Entities:
- Malware:Aggah Malware, Domain:elmerfloyd.com, Software:Windows Powershell, Product:Anti-Malware Scan Interface, Malware:WARZONE RAT
- ThreatActor:Syrian Electronic Army
- CrowdStrike – DEADEYE JACKAL is a nationalistic, Syria-based hacker group known as the Syrian Electronic Army. Visit the Adversar… https://t.co/P4Csc1BA9d
- Published by CrowdStrike – Twitter (2021-08-13 03:25:02)
- Entities:
- ThreatActor:Syrian Electronic Army, HashTag:#CSAdversaryUniverse, Username:@crowdstrike, Keyphrase:Hacker Group, Keyphrase:Nationalism
- ThreatActor:Cosmic Lynx
- iHeartMalware – @NeePscambaiting @InfoSecSherpa @Futurelabss @raypaxful @paxful @nogofallmaga Hushpuppi laundered money for North K… https://t.co/7In9bZ13CC
- Published by iHeartMalware – Twitter (2021-08-12 22:47:51)
- Entities:
- Username:@nogofallmaga, Username:@Futurelabss, Username:@NeePscambaiting, Username:@raypaxful, ThreatActor:Cosmic Lynx
- ThreatActor:Aggah
- Aggah Using Compromised Websites to Target Businesses Across Asia, Including Taiwan Manufacturing Industry
- Published by Anomali – Blog – RSS (2021-08-13 00:00:00)
- Entities:
- ThreatActor:Aggah, Domain:dlsc.af, Domain:elmerfloyd.com, Software:Windows Powershell, Product:Anti-Malware Scan Interface
- ThreatActor:Varrius
- Auburn wide receivers ‘lightyears’ ahead of where they were at end of spring practices
- Published by al.com (2021-08-13 05:37:00)
- Entities:
- Person:Mike Bobo, ThreatActor:Varrius, Person:Seth Williams, Person:Gus Malzahn, Keyphrase:Foot Injury
- Malware:Magniber Ransomware
- CrowdStrike – CrowdStrike recently observed new activity related to a 2017 ransomware family, known as Magniber, using the PrintN… https://t.co/i9xE1gZ30n
- Published by CrowdStrike – Twitter (2021-08-12 22:36:00)
- Entities:
- Malware:Magniber Ransomware, Company:CrowdStrike Holdings Inc, Vulnerability:PrintNightmare CVE-2021-34527, Username:@crowdstrike, Keyphrase:Ransomware
- Malware:ServHelper Backdoor
- New TA505 Campaign Uses Signed Files to Drop ServHelper Malware
- Published by Duo Decipher – RSS (2021-08-12 13:00:00)
- Entities:
- Malware:ServHelper Backdoor, ThreatActor:TA505, Keyphrase:Malware, Keyphrase:Crypto Mining, Keyphrase:Compromise
- Malware:Amadey
- New TA505 Campaign Uses Signed Files to Drop ServHelper Malware
- Published by Duo Decipher – RSS (2021-08-12 13:00:00)
- Entities:
- Malware:ServHelper Backdoor, ThreatActor:TA505, Keyphrase:Malware, Keyphrase:Crypto Mining, Keyphrase:Compromise
- Malware:FluBot Android Banking Trojan
- Receive strange “missed call” SMS messages? Here’s how to avoid the Flubot scam
- Published by Knews.uk (2021-08-12 17:05:00)
- Entities:
- Malware:FluBot Android Banking Trojan, Keyphrase:Malware, Company:Telstra Corporation Ltd, Keyphrase:Infectious, Keyphrase:SMS Short Message Service
- Malware:Chaos Malware
- Secnewsbytes – Chaos Malware Walks Line Between Ransomware and Wiper https://t.co/dLd3beaS1i #malware
- Published by Secnewsbytes – Twitter (2021-08-12 22:32:01)
- Entities:
- Malware:Chaos Malware, HashTag:#malware, Username:@secnewsbytes, UrlFull:https://threatpost.com/chaos-malware-ransomware-wiper/168520/, Keyphrase:Ransomware
