Cyber Threat Trends

Summary: 2025/04/28 21:43

First reported date: 2012/03/06
Inquiry period : 2025/03/29 21:43 ~ 2025/04/28 21:43 (1 months), 5 search results

전 기간대비 40% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Dll 입니다.
악성코드 유형 ShadowPad 도 새롭게 확인됩니다.
공격기술 Campaign apt 도 새롭게 확인됩니다.
기타 Zip File actor lure DeepSeek 등 신규 키워드도 확인됩니다.

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Dll	5	▲ 2 (40%)
2	Zip	1	▲ new
3	File	1	▲ new
4	actor	1	▲ new
5	lure	1	▲ new
6	DeepSeek	1	▲ new
7	TookPS	1	▲ new
8	Do	1	▲ new
9	CharlesLydgate	1	▲ new
10	xAdvSec	1	▲ new
11	Campaign	1	▲ new
12	hexe	1	▲ new
13	Malicious	1	▲ new
14	msimg	1	▲ new
15	IoC	1	▲ new
16	httpstcobTb	1	▲ new
17	Malware	1	- 0 (0%)
18	ShadowPad	1	▲ new
19	apt	1	▲ new
20	flaxtyphoon	1	▲ new
21	Hash	1	▲ new
22	Parents	1	▲ new
23	Execution	1	▲ new
24	Same	1	▲ new
25	Password	1	▲ new
26	Bat	1	▲ new
27	httpstcorSZDzbLcCL	1	▲ new
28	httpstcookaMxLx	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
ShadowPad		1 (100%)

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		1 (50%)
apt		1 (50%)

Country & Company

This is a country or company that is an issue.

No data.

Threat info

Last 5

SNS

(Total : 5)

Total keyword

Campaign IoC Malware ShadowPad apt Password

No	Title	Date
1	Szabolcs Schmidt @smica83 DLL from actor #TookPS already @abuse_ch https://t.co/okaMxLx3DS #DeepSeek #lure https://t.co/BykiG0A36T	2025.04.17
2	BleepingComputer @BleepinComputer @xAdvSec @CharlesLydgate Do you remember what DLL?	2025.04.11
3	Cyber Team @Cyberteam008 [2/2] File: msimg32.dll (Malicious DLL) 47ff4376e5b93de9ad7819c05d5dad70 File: h.exe (Legitimate Executable) 39624b7dd47f63720654a64cd9f9a988 File: AK.bat (Purpose Not Known as of now) 3320400d5359af97916b6dda9d13d344 @500mk500 #FlaxTyphoon #APT #ShadowPad #Malware #ioc	2025.04.08
4	JAMESWT @JAMESWT_MHT Same DLL Execution Parents Hash List https://t.co/Q92TAVs9q4	2025.04.01
5	JAMESWT @JAMESWT_MHT Zip https://t.co/bTb6U1ZMIX Dll https://t.co/rSZDzbLcCL Bat https://t.co/wsuaIkurUB Pdf certutil https://t.co/mPe1fWZWj8 Rar password protected https://t.co/62pf89iK6e Rezzipped https://t.co/MTa45NI8CG	2025.04.01

News

(Total : 0)

No data.

Additional information

No	Title	Date
1	2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types - Malware.News	2025.04.28
2	Intel CEO Targets Change in Corporate Culture to Shape Up - Bloomberg Technology	2025.04.28
3	IR Trends Q1 2025: Phishing soars as identity-based attacks persist - Malware.News	2025.04.28
4	Top Tier Target \| What It Takes to Defend a Cybersecurity Company from Today’s Adversaries - Malware.News	2025.04.28
5	28th April – Threat Intelligence Report - Malware.News	2025.04.28
View only the last 5

No	Title	Date
1	StaryDobry ruins New Year’s Eve, delivering miner instead of presents - Malware.News	2025.02.18
2	StaryDobry ruins New Year’s Eve, delivering miner instead of presents - Malware.News	2025.02.18
3	Qbot is Back.Connect - Malware.News	2025.01.20
4	Qbot is Back.Connect - Malware.News	2025.01.20
5	Qbot is Back.Connect - Malware.News	2025.01.20
View only the last 5

No	Request	Hash(md5)	Report No	Date
1	WWLIB.dll Generic Malware Malicious Packer Malicious Library UPX PE File DLL PE32 OS Processor Check	c6dde31a037cbe64c608b053de821d5b	60230	2025.04.28
2	beacon.bin CobaltStrike Generic Malware Malicious Packer Malicious Library UPX PE File PE64 DLL OS Processor Check	b24faa9c6e485219f062a61daa9b205d	60229	2025.04.28
3	cred64.dll Generic Malware Malicious Library UPX Antivirus PE File PE64 DLL OS Processor Check	6ad4e567657671704f787806f66f1a74	60239	2025.04.28
4	ret.exe task schedule PWS Code injection KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 DLL .NET DLL	69f49a50e927c947f4cb26a03dc67285	60241	2025.04.28
5	cred.dll Generic Malware Malicious Library UPX Antivirus PE File DLL PE32 OS Processor Check	69aba41ff3745b625a9e73b0f167b0e2	60249	2025.04.28
View only the last 5

Level	Description
danger	File has been identified by 46 AntiVirus engines on VirusTotal as malicious
notice	Allocates read-write-execute memory (usually to unpack itself)
info	Checks amount of memory in system
info	One or more processes crashed

No data

No	URL	CC	ASN Co	Reporter	Date
1	https://osdugalic.edu.rs/Fhmcvdf.vdf dll encrypted PureLogs stealer	RS	United Internet Ltd.	dani5577	2025.04.23
2	https://osdugalic.edu.rs/Txhkx.mp4 dll encrypted PureLogs stealer	RS	United Internet Ltd.	dani5577	2025.04.23
3	http://176.65.144.205/example.dll dll opendir	DE		NDA0E	2025.04.21
4	http://176.65.144.205/implant.dll dll opendir	DE		NDA0E	2025.04.21
5	http://196.251.118.210/d/rref.dll dll opendir	ZA	xneelo	NDA0E	2025.04.21
View only the last 5

Beta Service, If you select keyword, you can check detailed information.

Cyber Threat Trends

Summary: 2025/04/28 21:43

Trend graph by period

Related keyword cloud

Special keyword group

Malware Type

Attacker & Actors

Technique

Country & Company

Threat info

SNS

News

Additional information

Top10 search keywords

Submissions

Report

Company