popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/05/04 02:41

First reported date: 2011/06/21
Inquiry period : 2025/04/04 02:41 ~ 2025/05/04 02:41 (1 months), 13 search results

전 기간대비 31% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Stealer Infostealer Report Malware AhnLab 입니다.
악성코드 유형 FormBook Xloader SectopRAT RAT NetWireRC 도 새롭게 확인됩니다.
공격기술 Phishing Social Engineering Exploit 도 새롭게 확인됩니다.
기관 및 기업 Fortinet North Korea 도 새롭게 확인됩니다.
기타 Browser Email Vulnerability Gremlin March 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/25 XLoader Info-stealer Distributed Using MS Equation Editor Vulnerability (CVE-2017-11882)
    ㆍ 2025/04/16 Infostealer deployed via bogus PDFCandy converter
    ㆍ 2025/04/12 March 2025 Infostealer Trend Report

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1Stealer 13 ▲ 4 (31%)
2Infostealer 13 ▲ 4 (31%)
3Report 8 ▲ 7 (88%)
4Malware 6 ▲ 2 (33%)
5AhnLab 4 ▲ 3 (75%)
6Phishing 4 ▲ new
7intelligence 3 ▲ 1 (33%)
8Browser 3 ▲ new
9Email 2 ▲ new
10Vulnerability 2 ▲ new
11Gremlin 2 ▲ new
12Distribution 2 - 0 (0%)
13FormBook 2 ▲ new
14Campaign 2 ▼ -2 (-100%)
15ThreatProtection 2 - 0 (0%)
16Xloader 2 ▲ new
17March 2 ▲ new
18MWNEWS 2 ▲ 1 (50%)
19NortonLifeLock 2 - 0 (0%)
20Python 1 ▲ new
21Distributed 1 ▲ new
22Using 1 ▲ new
23Telegram 1 ▲ new
24MS 1 ▲ new
25purchase 1 ▲ new
26SharpTX 1 ▲ new
27Pentagon 1 ▲ new
28rebrand 1 ▲ new
29Cryptocurrency 1 ▲ new
30amp 1 ▲ new
31Unit 1 ▲ new
32local 1 ▲ new
33VPN 1 ▲ new
34Operation 1 - 0 (0%)
35Hannibal 1 ▲ new
36Discord 1 - 0 (0%)
37live 1 ▲ new
38Labs 1 ▲ new
39Zoom 1 ▲ new
40Trend 1 - 0 (0%)
41SectopRAT 1 ▲ new
42PDFCandy 1 ▲ new
43bogus 1 ▲ new
44converter 1 ▲ new
45RAT 1 ▲ new
46Elusive 1 ▲ new
47Comet 1 ▲ new
48NetWireRC 1 ▲ new
49FortiGuard 1 ▲ new
50Victim 1 ▲ new
51Social Engineering 1 ▲ new
52Fortinet 1 ▲ new
53Threat 1 ▲ new
54Research 1 ▲ new
55Blog 1 ▲ new
56unsecured 1 ▲ new
57North Korea 1 ▲ new
58Exploit 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
FormBook
2 (28.6%)
Xloader
2 (28.6%)
SectopRAT
1 (14.3%)
RAT
1 (14.3%)
NetWireRC
1 (14.3%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Stealer
13 (61.9%)
Phishing
4 (19%)
Campaign
2 (9.5%)
Social Engineering
1 (4.8%)
Exploit
1 (4.8%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
AhnLab
4 (66.7%)
Fortinet
1 (16.7%)
North Korea
1 (16.7%)
Threat info
Last 5

SNS

(Total : 9)
  Total keyword

Stealer Report Malware Phishing Browser Campaign FormBook VPN Operation AhnLab Xloader Email Vulnerability Telegram Cryptocurrency Fortinet NetWireRC Victim Social Engineering Attacker Discord North Korea RAT Exploit

No Title Date
1Virus Bulletin @virusbtn
Unit 42 researchers analyse Gremlin, an infostealer that can capture data from browsers, clipboard & local disk to steal sensitive data such as credit card details, browser cookies, crypto wallet information, FTP & VPN credentials. https://t.co/zrMQcuAs9Y https://t.co/zw6jrQharF		2025.04.30
2Cyber_OSINT @Cyber_O51NT
AhnLab reports that phishing emails disguised as purchase confirmations are being used to distribute the XLoader info-stealer, exploiting the MS Equation Editor vulnerability (CVE-2017-11882). #CyberSecurity #Phishing https://t.co/9JbYH41Z99		2025.04.30
3Threat Intelligence @threatintel
#ThreatProtection #Hannibal Stealer, rebrand of Sharp/TX stealers spotted for sale on underground forums with active operations ongoing. Read more about Symantec's protections: #CyberSecurity #Infostealer https://t.co/P7YFZuKzZO		2025.04.30
4Threat Intelligence @threatintel
#ThreatProtection #Pentagon Stealer: New Python and Go malware that targets browser creds, crypto wallets and app tokens. Read more about Symantec's protection: https://t.co/EmdIQr3e25 #Infostealer		2025.04.30
5Unit 42 @Unit42_Intel
New #infostealer Gremlin Stealer, written in C# and for purchase on Telegram, has capabilities ranging from stealing wallets from popular cryptocurrency platforms, browser data, or your Telegram and Discord sessions. Read the full analysis: https://t.co/a8dK615RLD https://t.co/6YNMLvKO4Z		2025.04.29

News

(Total : 4)
  Total keyword

Report Stealer AhnLab intelligence Malware Distribution Phishing Email Xloader SectopRAT Vulnerability

No Title Date
1XLoader Info-stealer Distributed Using MS Equation Editor Vulnerability (CVE-2017-11882) - ASEC BLOG2025.04.25
2Infostealer deployed via bogus PDFCandy converter - Malware.News2025.04.16
3March 2025 Infostealer Trend Report - Malware.News2025.04.12
4March 2025 Infostealer Trend Report - ASEC BLOG2025.04.10

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1https://salmesados.com/98713521/tangem-setup-x64.exe
infostealer shadowharvest stealer trojan 		LT LTHydra Communications Ltdninjacatcher2025.04.30
2https://salmesados.com/98713521/NordPass-Desktop-Setup.exe
infostealer shadowharvest stealer trojan 		LT LTHydra Communications Ltdninjacatcher2025.04.30
3https://salmesados.com/98713521/trustwallet-desktop-x64.exe
infostealer shadowharvest stealer trojan 		LT LTHydra Communications Ltdninjacatcher2025.04.30
4https://nasalcloud.com/4ebc219d-2a4b/tangem-setup-x64.exe
infostealer shadowharvest stealer trojan 		LT LTHydra Communications Ltdninjacatcher2025.04.30
5https://nasalcloud.com/4ebc219d-2a4b/NordPass-Desktop-Setup.exe
exe infostealer shadowharvest signed stealer trojan 		ninjacatcher2025.04.29
View only the last 5
Beta Service, If you select keyword, you can check detailed information.