Summary: 2025/04/29 12:56
First reported date: 2021/04/08
Inquiry period : 2025/03/30 12:56 ~ 2025/04/29 12:56 (1 months), 3 search results
전 기간대비 67% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 screenshot 입니다.
기타 fc18b0a28b4bba428cb63e8c9432f8dbae758cb816e3324685c0371562bbb30 httpstcoEXnC thorscanner h4rmsw4yX above 등 신규 키워드도 확인됩니다.
Trend graph by period
Related keyword cloud
Top 100| # | Trend | Count | Comparison |
|---|---|---|---|
| 1 | screenshot | 3 | ▲ 2 (67%) |
| 2 | fc18b0a28b4bba428cb63e8c9432f8dbae758cb816e3324685c0371562bbb30 | 1 | ▲ new |
| 3 | httpstcoEXnC | 1 | ▲ new |
| 4 | thorscanner | 1 | ▲ new |
| 5 | h4rmsw4yX | 1 | ▲ new |
| 6 | above | 1 | ▲ new |
| 7 | content | 1 | ▲ new |
| 8 | Advertising | 1 | ▲ new |
| 9 | DevMan | 1 | ▲ new |
| 10 | Ransom | 1 | ▲ new |
| 11 | portal | 1 | ▲ new |
Special keyword group
Top 5
Malware Type
This is the type of malware that is becoming an issue.
No data.
Attacker & Actors
The status of the attacker or attack group being issued.
No data.
Technique
This is an attack technique that is becoming an issue.
No data.
Country & Company
This is a country or company that is an issue.
No data.
Threat info
Last 5SNS
(Total : 3)
Total keyword
News
(Total : 0)No data.
Additional information
| No | Title | Date |
|---|---|---|
| 1 | People should be ‘outraged’ by efforts to shrink federal cyber teams, former CISA head says - Malware.News | 2025.04.29 |
| 2 | NXP Announces New CEO, Warns of ‘Very Uncertain Environment’ - Bloomberg Technology | 2025.04.29 |
| 3 | FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023 - Malware.News | 2025.04.29 |
| 4 | US intensifies Salt Typhoon crackdown with public info request - Malware.News | 2025.04.29 |
| 5 | Trump moves threaten US cyber defenses, says former CISA director Easterly - Malware.News | 2025.04.29 |
| View only the last 5 | ||
| No | Title | Date |
|---|---|---|
| 1 | How to restore information in an edited screenshot | Kaspersky official blog - Palada | 2023.03.28 |
| 2 | How to restore information in an edited screenshot | Kaspersky official blog - Palada | 2023.03.28 |
| 3 | Screenshot cryptoscam in Lightshot | Kaspersky official blog - Palada | 2021.04.12 |
| Level | Description |
|---|---|
| danger | The process powershell.exe wrote an executable file to disk which it then attempted to execute |
| danger | File has been identified by 32 AntiVirus engines on VirusTotal as malicious |
| watch | A command shell or script process was created by an unexpected parent process |
| watch | Communicates with host for which no DNS query was performed |
| watch | Disables proxy possibly for traffic interception |
| watch | Found URLs in memory pointing to an IP address rather than a domain (potentially indicative of Command & Control traffic) |
| watch | One or more non-whitelisted processes were created |
| watch | Resumed a suspended thread in a remote process potentially indicative of process injection |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Changes read-write memory protection to read-execute (probably to avoid detection when setting all RWX flags at the same time) |
| notice | Checks for the Locally Unique Identifier on the system for a suspicious privilege |
| notice | Creates a shortcut to an executable file |
| notice | Creates a suspicious process |
| notice | HTTP traffic contains suspicious features which may be indicative of malware related traffic |
| notice | Performs some HTTP requests |
| notice | Potentially malicious URLs were found in the process memory dump |
| notice | Yara rule detected in process memory |
| info | Checks amount of memory in system |
| info | Checks if process is being debugged by a debugger |
| info | Queries for the computername |
| info | Uses Windows APIs to generate a cryptographic key |
No data
No data
Beta Service, If you select keyword, you can check detailed information.