popup

Cyber Threat Trends

  1. Day Month

Gemelli flickerflypro flickerfly

Summary: 2025/04/29 00:23

First reported date: 2016/08/05
Inquiry period : 2025/04/22 00:23 ~ 2025/04/29 00:23 (7 days), 3 search results

전 기간대비 -233% 낮은 트렌드를 보이고 있습니다.
악성코드 유형 FormBook 도 새롭게 확인됩니다.
기타 neconyd IoC VBScript httpstcoPoOiqUwJjt VBS 신규 키워드도 확인됩니다.

Remcos is a RAT type malware that attackers use to perform actions on infected machines remotely. This malware is extremely actively caped up to date with updates coming out almost every single month.

참고로 동일한 그룹의 악성코드 타입은 Remcos njRAT QuasarRAT 등 112개 종이 확인됩니다.

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1Remcos 3 ▼ -7 (-233%)
2NetWireRC 2 ▼ -5 (-250%)
3AsyncRAT 1 - 0 (0%)
4last 1 - 0 (0%)
5Top 1 - 0 (0%)
6AgentTesla 1 - 0 (0%)
7FormBook 1 ▲ new
8Amadey 1 - 0 (0%)
9snake 1 - 0 (0%)
10neconyd 1 ▲ new
11Tofsee 1 - 0 (0%)
12XWorm 1 - 0 (0%)
13IoC 1 ▲ new
14Lumma 1 - 0 (0%)
15VBScript 1 ▲ new
16httpstcoPoOiqUwJjt 1 ▲ new
17abusech 1 - 0 (0%)
18VBS 1 ▲ new
19Low 1 - 0 (0%)
20RemcosRAT 1 - 0 (0%)
21Advertising 1 ▼ -1 (-100%)
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Remcos
3 (25%)
NetWireRC
2 (16.7%)
AsyncRAT
1 (8.3%)
AgentTesla
1 (8.3%)
FormBook
1 (8.3%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Attack technique
Technique

This is an attack technique that is becoming an issue.

No data.

Country & Company
Country & Company

This is a country or company that is an issue.

No data.

Malware Family
Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info
Last 5

SNS

(Total : 3)
  Total keyword

Remcos NetWireRC AsyncRAT AgentTesla FormBook Amadey XWorm IoC Lumma VBScript VBS RemcosRAT Advertising

No Title Date
1ANY.RUN @anyrun_app
Top 10 last week's threats by uploads ???? ⬇️ #Lumma 569 (1077) ⬆️ #Tofsee 363 (263) ⬇️ #Xworm 309 (1099) ⬇️ #Asyncrat 290 (395) ⬆️ #Neconyd 283 (169) ⬇️ #Snake 254 (379) ⬇️ #Remcos 232 (566) ⬇️ #Amadey 156 (380) ⬆️ #Formbook 134 (78) ⬇️ #Agenttesla 114 (271) Track them all: https://t.co/8l4AJmdDCa		2025.04.28
2Szabolcs Schmidt @smica83
Low detected #RemcosRAT VBS @abuse_ch https://t.co/PoOiqUwJjt https://t.co/pfcM1xjyZt		2025.04.28
3Konstantin Nikolenko @K_N1kolenko
#Remcos #ioc 62.60.226.21:40106 62.60.226.139:30303		2025.04.25

News

(Total : 0)

No data.

Additional information

No data
No data
No Category URL CC ASN Co Date
1c2http://www.sangrodrinkinbottleporto.xyz/2025.04.21
2c2http://160.30.192.52:2404/2025.04.14
3c2http://001remsw.ydns.eu/RO ROTennet Telecom Srl2025.04.11
4c2http://remsw.ydns.eu/2025.04.11
5c2http://103.28.89.34:10101/HK HKAmarutu Technology Ltd2025.03.31
View only the last 5
No URL CC ASN Co Reporter Date
1https://paste.ee/r/tFMXEhUq/0
remcos 		DaveLikesMalwre2025.04.10
2https://bitbucket.org/jorge2514/george/downloads/sosteff2025.txt
base64 bitbucket Encoded remcos RemcosRAT rev-base64-loader 		US USATLASSIAN PTY LTDDaveLikesMalwre2025.04.10
3http://62.60.226.112/file/3601_2042.exe
remcos 		IR IRASLINE LIMITEDskocherhan2025.02.28
4https://raw.githubusercontent.com/Oscarito20222/diciembre/refs/heads/main/sena.exe
remcos RemcosRAT 		US USFASTLYskocherhan2025.02.28
5https://github.com/Oscarito20222/diciembre/raw/refs/heads/main/sena.exe
github remcos RemcosRAT 		US USMICROSOFT-CORP-MSN-AS-BLOCKskocherhan2025.02.28
View only the last 5
Beta Service, If you select keyword, you can check detailed information.