Cyber Threat Trends

Summary: 2025/04/30 04:00

First reported date: 2018/03/30
Inquiry period : 2025/03/31 04:00 ~ 2025/04/30 04:00 (1 months), 2 search results

전 기간대비 신규 트렌드를 보이고 있습니다.
공격기술 Campaign 도 새롭게 확인됩니다.
기관 및 기업 Microsoft Brazil 도 새롭게 확인됩니다.
기타 icon httpstco Windows taskbar MercadoLibre 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
ㆍ 2025/04/23 MercadoLibre Woos Pop Icon Anitta After Rival Nubank’s Deal Ends

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	icon	2	▲ new
2	httpstco	1	▲ new
3	Microsoft	1	▲ new
4	Windows	1	▲ new
5	taskbar	1	▲ new
6	Campaign	1	▲ new
7	Brazil	1	▲ new
8	MercadoLibre	1	▲ new
9	Woos	1	▲ new
10	Pop	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

No data.

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		1 (100%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Microsoft		1 (50%)
Brazil		1 (50%)

Threat info

Last 5

SNS

(Total : 1)

Total keyword

Microsoft Windows

No	Title	Date
1	BleepingComputer @BleepinComputer Microsoft starts testing Windows 11 taskbar icon scaling - @serghei https://t.co/3s7Bo3Pa3Q https://t.co/3s7Bo3Pa3Q	2025.04.03

News

(Total : 1)

Total keyword

Campaign Brazil

No	Title	Date
1	MercadoLibre Woos Pop Icon Anitta After Rival Nubank’s Deal Ends - Bloomberg Technology	2025.04.23

Additional information

No	Title	Date
1	Averted DDoS attacks peak last year, could be surpassed by year-end - Malware.News	2025.04.30
2	Zero-day intrusion purportedly thwarts BreachForums comeback - Malware.News	2025.04.30
3	WooCommerce users subjected to widespread fake security phishing campaign - Malware.News	2025.04.30
4	Scattered Spider suspected to be behind Marks & Spencer compromise - Malware.News	2025.04.30
5	Report: Cyber threats bombard cybersecurity vendors - Malware.News	2025.04.30
View only the last 5

No	Title	Date
1	Google To Replace the “Padlock Icon” with the “Tune Icon” in Chrome 117 Version - Security Boulevard	2023.07.03
2	Software Icon McAfee Charged in Cryptocurrency Scam - Securityweek	2021.03.06
3	That new 'privacy icon' in iOS 11.3 does nothing to prevent password phishing - zdnet	2018.03.30

No	Request	Hash(md5)	Report No	Date
1	sss81242.exe Generic Malware Suspicious_Script Malicious Library UPX PE File PE32 OS Processor Check ZIP Format BMP Format icon PE64 GIF Format Lnk Format	58d3a0d574e37dc90b40603f0658abd2	58180	2025.03.17
2	update.exe Emotet Gen1 Malicious Library UPX Admin Tool (Sysinternals etc ...) .NET framework(MSIL) PE File PE64 CAB DLL PE32 .NET DLL .NET EXE icon	2b3324576857269e5bd626110108ee53	57355	2025.02.18
3	Windows_11_Update_Bypass_Setup... Generic Malware Malicious Library ASPack UPX .NET framework(MSIL) Admin Tool (Sysinternals etc ...) PE32 PE File MZP Format OS Processor Check .NET EXE icon Lnk Format GIF Format PE64	d29a079843c4f606e6daf91b6d687bcb	55446	2024.11.29
4	op.exe Gen1 North Korea NSIS Generic Malware Malicious Library Malicious Packer UPX Antivirus AntiDebug AntiVM PE32 PE File DLL .NET DLL OS Processor Check icon .NET EXE ftp PNG Format	f5d20b351d56605bbb51befee989fa6e	55336	2024.11.15
5	bxn.exe HermeticWiper Admin Tool (Sysinternals etc ...) UPX Malicious Library Javascript_Blob PE File PE32 JPEG Format PNG Format icon MSOffice File	63399c74c5dda6fa8276ded35b5118b9	55286	2024.11.11
View only the last 5

Level	Description
danger	File has been identified by 45 AntiVirus engines on VirusTotal as malicious
watch	Attempts to identify installed AV products by installation directory
watch	Communicates with host for which no DNS query was performed
watch	Deletes a large number of files from the system indicative of ransomware
watch	Deletes executed files from disk
watch	Installs itself for autorun at Windows startup
notice	A process attempted to delay the analysis task.
notice	Allocates read-write-execute memory (usually to unpack itself)
notice	An executable file was downloaded by the process vpzvqedovnhqnt6u.exe
notice	Creates a shortcut to an executable file
notice	Creates executable files on the filesystem
notice	Drops an executable to the user AppData folder
notice	Expresses interest in specific running processes
notice	HTTP traffic contains suspicious features which may be indicative of malware related traffic
notice	Performs some HTTP requests
notice	Searches running processes potentially to identify processes for sandbox evasion
info	Checks amount of memory in system
info	One or more processes crashed
info	Queries for the computername
Network	ET DROP Spamhaus DROP Listed Traffic Inbound group 7
Network	ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response
Network	ET INFO Executable Download from dotted-quad Host
Network	ET POLICY PE EXE or DLL Windows file download HTTP

No data

Beta Service, If you select keyword, you can check detailed information.