Cyber Threat Trends

Summary: 2025/04/29 09:46

First reported date: 2020/04/13
Inquiry period : 2025/03/30 09:46 ~ 2025/04/29 09:46 (1 months), 7 search results

전 기간대비 14% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Grandoreiro Malware Campaign target Phishing 입니다.
악성코드 유형 GameoverP2P Lumma NetWireRC 도 새롭게 확인됩니다.
공격자 Dark Caracal 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 Spain Mexico Europe China Government Brazil Microsoft Africa 도 새롭게 확인됩니다.
기타 Threat Email intelligence XLabs recent 등 신규 키워드도 확인됩니다.

According to ESET Research, Grandoreirois a Latin American banking trojan targeting Brazil, Mexico, Spain and Peru. As such, it shows unusual effort by its authors to evade detection and emulation, and progress towards a modular architecture.  Ref.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/16 Threat Intelligence Snapshot: Week 14, 2025
    ㆍ 2025/04/08 Threat Actors Use VPS Hosting Providers to Deliver Malware and Evade Detection
    ㆍ 2025/04/04 Grandoreiro Stealer Targeting Spain and Latin America: Malware Analysis and Decryption Insights

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Grandoreiro	7	▲ 1 (14%)
2	Malware	6	▲ 4 (67%)
3	Campaign	6	▲ 5 (83%)
4	Spain	5	▲ new
5	target	5	▲ 4 (80%)
6	Phishing	5	▲ 3 (60%)
7	Banking	4	▲ 2 (50%)
8	Stealer	4	▲ 3 (75%)
9	Trojan	4	▲ 2 (50%)
10	Report	3	▲ 2 (67%)
11	Latin	3	▲ 2 (67%)
12	Mexico	3	▲ new
13	attack	3	▲ 2 (67%)
14	Threat	2	▲ new
15	Europe	2	▲ new
16	Email	2	▲ new
17	China	2	▲ new
18	intelligence	2	▲ new
19	Government	2	▲ new
20	Criminal	2	▲ 1 (50%)
21	Android	2	▲ 1 (50%)
22	XLabs	1	▲ new
23	recent	1	▲ new
24	Cryptocurrency	1	- 0 (0%)
25	Use	1	▲ new
26	VPS	1	▲ new
27	Deliver	1	▲ new
28	Brazil	1	▲ new
29	Microsoft	1	▲ new
30	RCE	1	▲ new
31	Snapshot	1	▲ new
32	Forcepoint	1	▲ new
33	Browser	1	▲ new
34	Targeting	1	▲ new
35	Operati	1	▲ new
36	Africa	1	▲ new
37	Dnspy	1	▲ new
38	Process Hacker	1	▲ new
39	Software	1	▲ new
40	Update	1	- 0 (0%)
41	Windows	1	▲ new
42	Linux	1	▲ new
43	GameoverP2P	1	▲ new
44	Lumma	1	▲ new
45	c&c	1	▲ new
46	IoC	1	▼ -1 (-100%)
47	Dark Caracal	1	▲ new
48	NetWireRC	1	▲ new
49	Consumer	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Grandoreiro		7 (50%)
Trojan		4 (28.6%)
GameoverP2P		1 (7.1%)
Lumma		1 (7.1%)
NetWireRC		1 (7.1%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Dark Caracal		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		6 (37.5%)
Phishing		5 (31.3%)
Stealer		4 (25%)
RCE		1 (6.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Spain		5 (23.8%)
Banking		4 (19%)
Mexico		3 (14.3%)
Europe		2 (9.5%)
China		2 (9.5%)

Threat info

Last 5

SNS

(Total : 2)

Total keyword

Grandoreiro Spain Stealer Targeting Malware target Campaign Mexico Email Phishing

No	Title	Date
1	Virus Bulletin @virusbtn Forcepoint X-Labs researchers present a recent Grandoreiro campaign which targets users in Mexico, Argentina and Spain through phishing emails impersonating the tax agency. https://t.co/4XIdc6x7Hy https://t.co/YCcvt4hxLM	2025.04.07
2	Kimberly @StopMalvertisin Lab52 \| Grandoreiro Stealer Targeting Spain and Latin America: Malware Analysis and Decryption Insights https://t.co/Ojg6wGFFU5	2025.04.04

News

(Total : 5)

Total keyword

Malware Campaign Grandoreiro target Trojan Banking Phishing attack Stealer Spain Report Mexico Europe Android intelligence Government China Criminal Attacker Email Microsoft Cryptocurrency RCE Brazil Windows Africa Dnspy Process Hacker Software Browser Update Linux GameoverP2P Lumma c&c IoC Dark Caracal NetWireRC

No	Title	Date
1	Threat Intelligence Snapshot: Week 14, 2025 - Malware.News	2025.04.16
2	Threat Actors Use VPS Hosting Providers to Deliver Malware and Evade Detection - Malware.News	2025.04.08
3	Grandoreiro Stealer Targeting Spain and Latin America: Malware Analysis and Decryption Insights - Malware.News	2025.04.04
4	Release Notes: Android VM, Pre-Installed Dev Tools, TI Reports & Enhanced Detection - Malware.News	2025.04.03
5	Grandoreiro banking trojan revived in new attacks against Latin America, Europe - Malware.News	2025.03.31

Additional information

No	Title	Date
1	NXP Announces New CEO, Warns of ‘Very Uncertain Environment’ - Bloomberg Technology	2025.04.29
2	FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023 - Malware.News	2025.04.29
3	US intensifies Salt Typhoon crackdown with public info request - Malware.News	2025.04.29
4	Trump moves threaten US cyber defenses, says former CISA director Easterly - Malware.News	2025.04.29
5	Escalating attacks against Ivanti VPN appliances expected - Malware.News	2025.04.29
View only the last 5

No	Title	Date
1	Threat Intelligence Snapshot: Week 14, 2025 - Malware.News	2025.04.16
2	Threat Intelligence Snapshot: Week 14, 2025 - Malware.News	2025.04.16
3	Threat Actors Use VPS Hosting Providers to Deliver Malware and Evade Detection - Malware.News	2025.04.08
4	Release Notes: Android VM, Pre-Installed Dev Tools, TI Reports & Enhanced Detection - Malware.News	2025.04.03
5	Grandoreiro banking trojan revived in new attacks against Latin America, Europe - Malware.News	2025.03.31
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	https://cld.pt/dl/download/d551d44f-78de-44dc-a537-f373b53bfa32/daveztotal.zip Grandoreiro payload	PT	...	johnk3r	2025.01.21
2	https://infopublic67.online/672a581b1849b/%E2%9D%89Documentacion%20Detalles%E2%9D%89_%E2%91%A0%E2%91... Grandoreiro opendir zip			NDA0E	2024.11.06
3	https://www.infopublic67.online/672a581b1849b/%E2%9D%89Documentacion%20Detalles%E2%9D%89_%E2%91%A0%E... Grandoreiro opendir zip			NDA0E	2024.11.06
4	https://www.infopublic67.online/672a581b1849b/672a581b1861e.vbs Grandoreiro opendir vbs			NDA0E	2024.11.06
5	https://www.infopublic67.online/672a581b1849b/672a581b18621.vbs Grandoreiro opendir vbs			NDA0E	2024.11.06
View only the last 5

Beta Service, If you select keyword, you can check detailed information.