Summary: 2025/04/29 12:35
First reported date: 2016/08/23
Inquiry period : 2025/04/28 12:35 ~ 2025/04/29 12:35 (1 days), 1 search results
지난 7일 기간대비 신규 트렌드를 보이고 있습니다.
악성코드 유형 Clop solarmarker RATel 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 United States 도 새롭게 확인됩니다.
기타 Advertising LLM documentation AI detection 등 신규 키워드도 확인됩니다.
Unit 42 notes that they identified a new version of SolarMarker, a malware family known for its infostealing and backdoor capabilities, mainly delivered through search engine optimization (SEO) manipulation to convince users to download malicious documents.
Some of SolarMarker’s capabilities include the exfiltration of auto-fill data, saved passwords and saved credit card information from victims’ web browsers. Besides capabilities typical for infostealers, SolarMarker has additional capabilities such as file transfer and execution of commands received from a C2 server.
The malware invests significant effort into defense evasion, which consists of techniques like signed files, huge files, impersonation of legitimate software installations and obfuscated PowerShell scripts. Ref.
* 최근 뉴스기사 Top3:
ㆍ 2025/04/29 Can We Stop Documenting Our Detections?
Trend graph by period
Related keyword cloud
Top 100| # | Trend | Count | Comparison |
|---|---|---|---|
| 1 | Clop | 1 | ▲ new |
| 2 | Advertising | 1 | ▲ new |
| 3 | LLM | 1 | ▲ new |
| 4 | documentation | 1 | ▲ new |
| 5 | AI | 1 | ▲ new |
| 6 | detection | 1 | ▲ new |
| 7 | Software | 1 | ▲ new |
| 8 | RCE | 1 | ▲ new |
| 9 | intelligence | 1 | ▲ new |
| 10 | Update | 1 | ▲ new |
| 11 | Malware | 1 | ▲ new |
| 12 | 1 | ▲ new | |
| 13 | GitHub | 1 | ▲ new |
| 14 | solarmarker | 1 | ▲ new |
| 15 | RATel | 1 | ▲ new |
| 16 | powershell | 1 | ▲ new |
| 17 | United States | 1 | ▲ new |
| 18 | ChatGPT | 1 | ▲ new |
| 19 | investigative | 1 | ▲ new |
Special keyword group
Top 5
Malware Type
This is the type of malware that is becoming an issue.
| Keyword | Average | Label |
|---|---|---|
| Clop |
|
1 (33.3%) |
| solarmarker |
|
1 (33.3%) |
| RATel |
|
1 (33.3%) |
Attacker & Actors
The status of the attacker or attack group being issued.
No data.
Country & Company
This is a country or company that is an issue.
| Keyword | Average | Label |
|---|---|---|
| United States |
|
1 (100%) |
Threat info
Last 5SNS
(Total : 0)No data.
News
(Total : 1)Clop Advertising Software RCE intelligence Update Malware LinkedIn GitHub solarmarker RATel powershell United States ChatGPT
| No | Title | Date |
|---|---|---|
| 1 | Can We Stop Documenting Our Detections? - Malware.News | 2025.04.29 |
Additional information
| No | Title | Date |
|---|---|---|
| 1 | People should be ‘outraged’ by efforts to shrink federal cyber teams, former CISA head says - Malware.News | 2025.04.29 |
| 2 | NXP Announces New CEO, Warns of ‘Very Uncertain Environment’ - Bloomberg Technology | 2025.04.29 |
| 3 | FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023 - Malware.News | 2025.04.29 |
| 4 | US intensifies Salt Typhoon crackdown with public info request - Malware.News | 2025.04.29 |
| 5 | Trump moves threaten US cyber defenses, says former CISA director Easterly - Malware.News | 2025.04.29 |
| View only the last 5 | ||
| No | Title | Date |
|---|---|---|
| 1 | One in Four Cyberattacks in 2024 Traced to Infostealers, Huntress Reports - Malware.News | 2025.03.03 |
| 2 | There’s Something About CryptBot: Yet Another Silly Stealer (YASS) - Malware.News | 2024.09.10 |
| 3 | There’s Something About CryptBot: Yet Another Silly Stealer (YASS) - Malware.News | 2024.09.10 |
| 4 | Know your Adversary’s next move with TIE - Malware.News | 2024.09.10 |
| 5 | Know your Adversary’s next move with TIE - Malware.News | 2024.09.10 |
| View only the last 5 | ||