popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/04/25 09:15

First reported date: 2011/08/12
Inquiry period : 2025/03/26 09:15 ~ 2025/04/25 09:15 (1 months), 2 search results

전 기간대비 신규 트렌드를 보이고 있습니다.
악성코드 유형 RMS rurat NetWireRC RATel Ransomware CACTUS 도 새롭게 확인됩니다.
공격기술 Exploit Campaign 도 새롭게 확인됩니다.
기관 및 기업 Google Mandiant Cisco Kaspersky Russia Microsoft UN 도 새롭게 확인됩니다.
기타 Cobalt Strike Email Windows Update Advertising 등 신규 키워드도 확인됩니다.

CyberInt states that Remote Manipulator System (RMS) is a legitimate tool developed by Russian organization TektonIT and has been observed in campaigns conducted by TA505 as well as numerous smaller campaigns likely attributable to other, disparate, threat actors. In addition to the availability of commercial licenses, the tool is free for non-commercial use and supports the remote administration of both Microsoft Windows and Android devices.  Ref.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/23 Introducing ToyMaker, an Initial Access Broker working in cahoots with double extortion gangs


참고로 동일한 그룹의 악성코드 타입은 Remcos njRAT QuasarRAT 등 112개 종이 확인됩니다.

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1RMS 2 ▲ new
2Cobalt Strike 1 ▲ new
3Email 1 ▲ new
4Windows 1 ▲ new
5Update 1 ▲ new
6Exploit 1 ▲ new
7Advertising 1 ▲ new
8Google 1 ▲ new
9Mandiant 1 ▲ new
10Backdo 1 ▲ new
11Cisco 1 ▲ new
12rurat 1 ▲ new
13es 1 ▲ new
14Además 1 ▲ new
15instalar 1 ▲ new
16persistencia 1 ▲ new
17desactivar 1 ▲ new
18NetWireRC 1 ▲ new
19RATel 1 ▲ new
20MFA 1 ▲ new
21Watchdog 1 ▲ new
22c&c 1 ▲ new
23Vulnerability 1 ▲ new
24Malware 1 ▲ new
25Kaspersky 1 ▲ new
26Forensics 1 ▲ new
27Russia 1 ▲ new
28Campaign 1 ▲ new
29IoC 1 ▲ new
30Victim 1 ▲ new
31Ransomware 1 ▲ new
32powershell 1 ▲ new
33Microsoft 1 ▲ new
34CACTUS 1 ▲ new
35PDB 1 ▲ new
36Zero Trust 1 ▲ new
37schtasks 1 ▲ new
38UN 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
RMS
2 (28.6%)
rurat
1 (14.3%)
NetWireRC
1 (14.3%)
RATel
1 (14.3%)
Ransomware
1 (14.3%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Exploit
1 (50%)
Campaign
1 (50%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
Google
1 (14.3%)
Mandiant
1 (14.3%)
Cisco
1 (14.3%)
Kaspersky
1 (14.3%)
Russia
1 (14.3%)
Malware Family
Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info
Last 5

SNS

(Total : 1)
  Total keyword

rurat NetWireRC UN RMS

No Title Date
1Germán Fernández @1ZRR4H
2/ Además de instalar persistencia, desactivar AV's y eliminar arranque en modo seguro (entre otras cosas), también implementa: 1.- "fisherprice.msi" es #RuRAT (Remote Utilities) con conexión hacia el dominio ru.elquecreeenmiviviraporsiempre.xyz ???? 2.- "4.dll" es un binario en https://t.co/hgNLs9		2025.04.24

News

(Total : 1)
  Total keyword

Cobalt Strike Zero Trust Email Mandiant Google Advertising Exploit Update Windows RMS RATel Cisco MFA Ransomware schtasks PDB Watchdog CACTUS Microsoft powershell Attacker Victim c&c IoC Campaign Russia Forensics Kaspersky Malware Vulnerability

No Title Date
1Introducing ToyMaker, an Initial Access Broker working in cahoots with double extortion gangs - Malware.News2025.04.23

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1https://floatnightlife.com/rms.msi?sn=65
rms 		GB GBDiViNetworks LTD.abuse_ch2025.03.08
Beta Service, If you select keyword, you can check detailed information.