Cyber Threat Trends

Summary: 2025/04/19 12:25

First reported date: 2016/04/19
Inquiry period : 2025/03/20 12:25 ~ 2025/04/19 12:25 (1 months), 3 search results

전 기간대비 -167% 낮은 트렌드를 보이고 있습니다.
악성코드 유형 HijackLoader 도 새롭게 확인됩니다.
공격기술 hijack 도 새롭게 확인됩니다.
기관 및 기업 Zscaler 도 새롭게 확인됩니다.
기타 ThreatLabz Report c&c GitHub Update 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
ㆍ 2025/04/02 New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth

참고로 동일한 그룹의 악성코드 타입은 SmokeLoader GuLoader Zloader 등 47개 종이 확인됩니다.

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Malware	3	▼ -2 (-67%)
2	loader	3	▼ -5 (-167%)
3	Zscaler	2	▲ new
4	hijack	2	▲ new
5	ThreatLabz	1	▲ new
6	Report	1	▲ new
7	HijackLoader	1	▲ new
8	c&c	1	▲ new
9	GitHub	1	▲ new
10	Update	1	▲ new
11	FUD	1	▲ new
12	Windows	1	▲ new
13	Alleged	1	▲ new
14	Sale	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
HijackLoader		1 (100%)

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
hijack		2 (100%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Zscaler		2 (100%)

Malware Family

Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info

Last 5

SNS

(Total : 2)

Total keyword

Malware Zscaler hijack Report HijackLoader Windows

No	Title	Date
1	ThreatMon @MonThreat ???? Alleged Sale of FUD Windows Loader "loader.c" ???? A threat actor claims to be selling "loader.c," a fully undetectable (FUD) Windows resident loader capable of generating unique, device-specific builds to bypass antivirus detection. The malware, written in C (~80KB), is https://t.co/wWQoO6cxC	2025.04.10
2	Cyber_OSINT @Cyber_O51NT Zscaler ThreatLabz reports that HijackLoader, a malware loader from 2023, has introduced new evasion tactics including call stack spoofing and anti-VM checks to enhance its detection resistance and establish persistence. #CyberSecurity #Malware https://t.co/jsIhBNtTol	2025.04.01

News

(Total : 1)

Total keyword

Malware Zscaler c&c GitHub Update hijack

No	Title	Date
1	New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth - The Hacker News	2025.04.02

Additional information

No	Title	Date
1	Tesla to Delay Production of Cheaper EVs, Reuters Reports - Bloomberg Technology	2025.04.19
2	When Vulnerability Information Flows are Vulnerable Themselves - Malware.News	2025.04.19
3	CISA warns threat hunting staff of end to Google, Censys contracts as agency cuts set in - Malware.News	2025.04.19
4	Radiology practice reportedly working with FBI after ‘data security incident’ - Malware.News	2025.04.19
5	Text scams grow to steal hundreds of millions of dollars - Malware.News	2025.04.19
View only the last 5

No	Title	Date
1	New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth - The Hacker News	2025.04.02
2	Threat Bulletin: Weaponized Software Targets Chinese-Speaking Organizations - Malware.News	2025.01.17
3	Malware Analysis: A Kernel Land Rootkit Loader for FK_Undead - Malware.News	2024.12.10
4	Hello again, FakeBat: popular loader returns after months-long hiatus - Malware.News	2024.11.09
5	Hello again, FakeBat: popular loader returns after months-long hiatus - Malware.News	2024.11.09
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	https://raw.githubusercontent.com/ruthmooregmuax/ruthmooregmuax/refs/heads/main/windows.bat bat Loader ua-wget	US	FASTLY	anonymous	2025.03.26
2	https://ly.ardentlysqueamish.autos/772a09d8ce7f9f4da9fc0087f1cf84f12aedb2e2cfbf9989.bin Loader ps1 ua-wget	US		DaveLikesMalwre	2025.02.17
3	http://107.172.201.19/Drivespan.dll banker latam Loader payload	US	AS-COLOCROSSING	johnk3r	2025.01.25
4	http://107.172.201.19/Python312-32.zip banker latam Loader payload	US	AS-COLOCROSSING	johnk3r	2025.01.25
5	http://114.55.112.203:8082/xstream.py Loader python ua-wget	CN	...	anonymous	2024.12.30
View only the last 5

Beta Service, If you select keyword, you can check detailed information.