Trend graph by period
Related keyword cloud
Top 100| # | Trend | Count | Comparison |
|---|---|---|---|
| 1 | Amadey | 3 | ▲ 2 (67%) |
| 2 | XWorm | 3 | - 0 (0%) |
| 3 | Lumma | 3 | - 0 (0%) |
| 4 | tofsee | 3 | ▼ -1 (-33%) |
| 5 | snake | 3 | - 0 (0%) |
| 6 | AsyncRAT | 3 | - 0 (0%) |
| 7 | AgentTesla | 3 | - 0 (0%) |
| 8 | Remcos | 3 | - 0 (0%) |
| 9 | Top | 3 | - 0 (0%) |
| 10 | last | 3 | - 0 (0%) |
| 11 | NetWireRC | 3 | - 0 (0%) |
| 12 | Advertising | 3 | - 0 (0%) |
| 13 | quasar | 1 | ▼ -1 (-100%) |
| 14 | sality | 1 | ▲ new |
| 15 | Vidar | 1 | ▲ new |
| 16 | neconyd | 1 | ▲ new |
| 17 | Stealc | 1 | ▲ new |
| 18 | DCRat | 1 | ▼ -2 (-200%) |
Special keyword group
Top 5
Malware Type
This is the type of malware that is becoming an issue.
| Keyword | Average | Label |
|---|---|---|
| Amadey |
|
3 (12.5%) |
| XWorm |
|
3 (12.5%) |
| Lumma |
|
3 (12.5%) |
| AsyncRAT |
|
3 (12.5%) |
| AgentTesla |
|
3 (12.5%) |
Attacker & Actors
The status of the attacker or attack group being issued.
No data.
Technique
This is an attack technique that is becoming an issue.
No data.
Country & Company
This is a country or company that is an issue.
No data.
Threat info
Last 5SNS
(Total : 3)
Total keyword
Amadey XWorm Lumma AsyncRAT AgentTesla Remcos NetWireRC Advertising Vidar Stealc DCRat
News
(Total : 0)No data.
Additional information
| No | Title | Date |
|---|---|---|
| 1 | 엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트 | 2025.04.17 |
| 2 | Hi, robot: Half of all internet traffic now automated - Malware.News | 2025.04.17 |
| 3 | Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology | 2025.04.17 |
| 4 | Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News | 2025.04.17 |
| 5 | DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology | 2025.04.17 |
| View only the last 5 | ||
| No | Title | Date |
|---|---|---|
| 1 | Tofsee Botnet Gets Aggressive with Russian Dating - infosecurity | 2016.09.30 |
| No | Request | Hash(md5) | Report No | Date |
|---|---|---|---|---|
| 1 |  tofsee.exePWS/Dexter Tofsee Malicious Library Malicious Packer PE File PE32 | 92e466525e810b79ae23eac344a52027 | 42678 | 2023.06.29 |
| Level | Description |
|---|---|
| danger | File has been identified by 61 AntiVirus engines on VirusTotal as malicious |
| watch | Installs itself for autorun at Windows startup |
| watch | Operates on local firewall's policies and settings |
| notice | A process created a hidden window |
| notice | Creates a service |
| notice | Creates a suspicious process |
| notice | Creates executable files on the filesystem |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| notice | Uses Windows utilities for basic Windows functionality |
| info | Checks amount of memory in system |
| info | Command line console output was observed |
No data
| No | URL | CC | ASN Co | Reporter | Date |
|---|---|---|---|---|---|
| 1 | http://176.113.115.7/files/wolfgangalive0/xmsn.exe exe opendir Tofsee | RU  | ... | DaveLikesMalwre | 2025.03.24 |
| 2 | https://github.com/legendary99999/dsfksdfkds/releases/download/dsfdsfdsdf/XMZTSVYE_l10_wix4_dash.exe Tofsee | US  | MICROSOFT-CORP-MSN-AS-BLOCK | aachum | 2025.03.08 |
| 3 | http://185.215.113.97/files/1506757897/b6V4Rod.ps1 dropped-by-amadey ps1 Tofsee | aachum | 2025.02.10 | ||
| 4 | http://185.7.214.51/tank Tofsee | FR  | Qual.it S.a.s. | Gi7w0rm | 2024.12.17 |
| 5 | http://176.113.115.84:8080/4.php/987123.exe 32 exe Tofsee | RU | ... | zbetcheckin | 2024.01.14 |
| View only the last 5 | |||||
Beta Service, If you select keyword, you can check detailed information.