Summary: 2025/04/30 00:15
First reported date: 2016/08/23
Inquiry period : 2025/04/29 00:15 ~ 2025/04/30 00:15 (1 days), 1 search results
지난 7일 기간대비 신규 트렌드를 보이고 있습니다.
악성코드 유형 Clop solarmarker RATel 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 United States 도 새롭게 확인됩니다.
기타 Advertising LLM documentation AI detection 등 신규 키워드도 확인됩니다.
Unit 42 notes that they identified a new version of SolarMarker, a malware family known for its infostealing and backdoor capabilities, mainly delivered through search engine optimization (SEO) manipulation to convince users to download malicious documents.
Some of SolarMarker’s capabilities include the exfiltration of auto-fill data, saved passwords and saved credit card information from victims’ web browsers. Besides capabilities typical for infostealers, SolarMarker has additional capabilities such as file transfer and execution of commands received from a C2 server.
The malware invests significant effort into defense evasion, which consists of techniques like signed files, huge files, impersonation of legitimate software installations and obfuscated PowerShell scripts. Ref.
* 최근 뉴스기사 Top3:
ㆍ 2025/04/29 Can We Stop Documenting Our Detections?
Trend graph by period
Related keyword cloud
Top 100| # | Trend | Count | Comparison |
|---|---|---|---|
| 1 | Clop | 1 | ▲ new |
| 2 | Advertising | 1 | ▲ new |
| 3 | LLM | 1 | ▲ new |
| 4 | documentation | 1 | ▲ new |
| 5 | AI | 1 | ▲ new |
| 6 | detection | 1 | ▲ new |
| 7 | Software | 1 | ▲ new |
| 8 | RCE | 1 | ▲ new |
| 9 | intelligence | 1 | ▲ new |
| 10 | Update | 1 | ▲ new |
| 11 | Malware | 1 | ▲ new |
| 12 | 1 | ▲ new | |
| 13 | GitHub | 1 | ▲ new |
| 14 | solarmarker | 1 | ▲ new |
| 15 | RATel | 1 | ▲ new |
| 16 | powershell | 1 | ▲ new |
| 17 | United States | 1 | ▲ new |
| 18 | ChatGPT | 1 | ▲ new |
| 19 | investigative | 1 | ▲ new |
Special keyword group
Top 5
Malware Type
This is the type of malware that is becoming an issue.
| Keyword | Average | Label |
|---|---|---|
| Clop |
|
1 (33.3%) |
| solarmarker |
|
1 (33.3%) |
| RATel |
|
1 (33.3%) |
Attacker & Actors
The status of the attacker or attack group being issued.
No data.
Country & Company
This is a country or company that is an issue.
| Keyword | Average | Label |
|---|---|---|
| United States |
|
1 (100%) |
Threat info
Last 5SNS
(Total : 0)No data.
News
(Total : 1)Clop Advertising Software RCE intelligence Update Malware LinkedIn GitHub solarmarker RATel powershell United States ChatGPT
| No | Title | Date |
|---|---|---|
| 1 | Can We Stop Documenting Our Detections? - Malware.News | 2025.04.29 |
Additional information
| No | Title | Date |
|---|---|---|
| 1 | Digital rampage saw ex-Disney employee remove nut allergy info from menus, dox co-workers, and more - Malware.News | 2025.04.29 |
| 2 | 9 Open source cloud security tools for 2025 - Malware.News | 2025.04.29 |
| 3 | Amazon's Tariff Note Is a 'Hostile and Political Act,' White House Says - Bloomberg Technology | 2025.04.29 |
| 4 | Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting - Malware.News | 2025.04.29 |
| 5 | Amazon Denies Tariff Label Plans After White House Criticism - Bloomberg Technology | 2025.04.29 |
| View only the last 5 | ||
| No | Title | Date |
|---|---|---|
| 1 | One in Four Cyberattacks in 2024 Traced to Infostealers, Huntress Reports - Malware.News | 2025.03.03 |
| 2 | There’s Something About CryptBot: Yet Another Silly Stealer (YASS) - Malware.News | 2024.09.10 |
| 3 | There’s Something About CryptBot: Yet Another Silly Stealer (YASS) - Malware.News | 2024.09.10 |
| 4 | Know your Adversary’s next move with TIE - Malware.News | 2024.09.10 |
| 5 | Know your Adversary’s next move with TIE - Malware.News | 2024.09.10 |
| View only the last 5 | ||