Tag: Malware

RedLine Stealer is a trending Infostealer and was first observed in March 2020. Sold as a MaaS, and often distributed via malicious email attachments.

Remcos is a RAT that first appeared in the wild in 2016. Remcos distributes itself through malicious Microsoft Office documents.

SunBurst is the backdoor that was planted within SolarWinds’s Orion IT management software during 2020, as part of the infamous supply chain attack.

Discovered in 2020, Kinsing is a Golang cryptominer with a rootkit component. Originally designed to exploit Linux systems.

Trickbot is a modular banking Trojan, attributed to the WizardSpider cybercrime gang. Mostly delivered via spam campaigns or other malware families.

Raccoon infostealer was first observed in April 2019. This infostealer targets Windows systems and is sold as a MaaS in underground forums.

Qbot AKA Qakbot is a banking Trojan that first appeared in 2008. It was designed to steal a user’s banking credentials and keystrokes.

Phorpiex has been active since 2010 and at its peak controlled more than a million infected hosts. It is known for distributing other malware families.

Pegasus is a highly sophisticated spyware which targets Android and iOS mobile devices, developed by the Israeli NSO group.

NSRMiner is a cryptominer that surfaced around November 2018, and was mainly spread in Asia, specifically Vietnam, China, Japan and Ecuador.