Cyber Threat Trends

Summary: 2025/04/29 00:36

First reported date: 2015/03/23
Inquiry period : 2025/03/30 00:36 ~ 2025/04/29 00:36 (1 months), 8 search results

전 기간대비 38% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Nanocore c&c C2 live 입니다.
악성코드 유형 DYEPACK Xloader GameoverP2P RecordBreaker Raccoon Remcos Emotet RedLine FormBook 도 새롭게 확인됩니다.
공격기술 Stealer Campaign Phishing 도 새롭게 확인됩니다.
기관 및 기업 Microsoft United States 도 새롭게 확인됩니다.
기타 server manufacturerviewingglatplygg internetsearchviewdnsnet Advertising Education 등 신규 키워드도 확인됩니다.

NanoCore is a Remote Access Trojan or RAT. This malware is highly customizable with plugins which allow attackers to tailor its functionality to their needs. Nanocore is created with the .NET framework and it’s available for purchase for just $25 from its

* 최근 뉴스기사 Top3:
ㆍ 2025/04/08 How MSSP Expertware Uses ANY.RUN’s Interactive Sandbox for Faster Threat Analysis

참고로 동일한 그룹의 악성코드 타입은 Remcos njRAT QuasarRAT 등 112개 종이 확인됩니다.

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Nanocore	8	▲ 3 (38%)
2	c&c	8	▲ 3 (38%)
3	C2	7	▲ 2 (29%)
4	live	7	▲ 2 (29%)
5	Microsoft	2	▲ new
6	server	1	▲ new
7	manufacturerviewingglatplygg	1	▲ new
8	internetsearchviewdnsnet	1	▲ new
9	Advertising	1	▲ new
10	Education	1	▲ new
11	powershell	1	▲ new
12	Linux	1	▲ new
13	Stealer	1	▲ new
14	DYEPACK	1	▲ new
15	Xloader	1	▲ new
16	GameoverP2P	1	▲ new
17	RecordBreaker	1	▲ new
18	Windows	1	▲ new
19	Campaign	1	▲ new
20	IoC	1	▲ new
21	United States	1	▲ new
22	Report	1	▲ new
23	Phishing	1	▲ new
24	Android	1	▲ new
25	Malware	1	▲ new
26	Cobalt Strike	1	▲ new
27	Raccoon	1	▲ new
28	Remcos	1	▲ new
29	Malware download	1	▲ new
30	Emotet	1	▲ new
31	RedLine	1	▲ new
32	FormBook	1	▲ new
33	DDNS	1	- 0 (0%)
34	foryoumedicalddnsnet	1	▲ new
35	microsoftftpserveftpcom	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Nanocore		8 (47.1%)
DYEPACK		1 (5.9%)
Xloader		1 (5.9%)
GameoverP2P		1 (5.9%)
RecordBreaker		1 (5.9%)

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Stealer		1 (33.3%)
Campaign		1 (33.3%)
Phishing		1 (33.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Microsoft		2 (66.7%)
United States		1 (33.3%)

Malware Family

Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info

Last 5

SNS

(Total : 7)

Total keyword

Nanocore C2 c&c DDNS Microsoft

No	Title	Date
1	SarlackLab @SarlackLab live #nanocore #C2 server microsoftftp.serveftp.com confirmed 2025-04-24	2025.04.24
2	SarlackLab @SarlackLab live #nanocore #C2 server 147.185.221.26:50000 manufacturer-viewing.gl.at.ply.gg confirmed 2025-04-22	2025.04.22
3	SarlackLab @SarlackLab live #nanocore #C2 server 88.118.154.192:3333 internetsearch.viewdns.net confirmed 2025-04-22	2025.04.22
4	SarlackLab @SarlackLab live #nanocore #C2 server 193.161.193.99:23612 kitikixoroshie-23612.portmap.io confirmed 2025-04-21	2025.04.21
5	SarlackLab @SarlackLab live #nanocore #C2 server 196.251.115.13:48405 confirmed 2025-04-18	2025.04.18

News

(Total : 1)

Total keyword

FormBook IoC Education Windows Linux Stealer DYEPACK Xloader GameoverP2P Microsoft RecordBreaker powershell c&c United States RedLine Campaign Report Phishing Android Malware Cobalt Strike Nanocore Raccoon Remcos Emotet Advertising

No	Title	Date
1	How MSSP Expertware Uses ANY.RUN’s Interactive Sandbox for Faster Threat Analysis - Malware.News	2025.04.08

Additional information

No	Title	Date
1	Employee monitoring app exposes users, leaks 21+ million screenshots - Malware.News	2025.04.28
2	Introducing XSIAM 3.0 - Malware.News	2025.04.28
3	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28
4	2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types - Malware.News	2025.04.28
5	Intel CEO Targets Change in Corporate Culture to Shape Up - Bloomberg Technology	2025.04.28
View only the last 5

No	Title	Date
1	How MSSP Expertware Uses ANY.RUN’s Interactive Sandbox for Faster Threat Analysis - Malware.News	2025.04.08
2	NanoCore RAT Malware Analysis - Malware.News	2025.02.10
3	NanoCore RAT Malware Analysis - Malware.News	2025.02.10
4	NanoCore RAT Malware Analysis - Malware.News	2025.02.10
5	BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar - Malware.News	2024.09.06
View only the last 5

No data

No	Category	URL	CC	ASN Co	Date
1	c2	http://193.233.202.90:54984/	RU	OOO FREEnet Group	2025.03.27
2	c2	http://157.97.11.134/	IS	Nova hf	2025.02.12
3	c2	http://simpletest.ddns.net/	HR	A1 Hrvatska d.o.o.	2025.02.03
4	c2	http://sulfux.ddns.net/	FR	Orange	2025.02.03
5	c2	http://blv23728.ddns.net/			2024.10.12
View only the last 5

No	URL	CC	ASN Co	Reporter	Date
1	https://raw.githubusercontent.com/doodoofart3443/test/refs/heads/main/file5.exe NanoCore	US	FASTLY	DaveLikesMalwre	2025.04.28
2	http://185.215.113.19//inc/nano.exe NanoCore			anonymous	2025.04.26
3	http://185.215.113.19//inc/Survox.exe NanoCore			anonymous	2025.04.26
4	http://185.215.113.117//inc/nano.exe NanoCore			abus3reports	2025.04.26
5	http://185.215.113.117//inc/Survox.exe NanoCore			abus3reports	2025.04.26
View only the last 5

Beta Service, If you select keyword, you can check detailed information.