Cyber Threat Trends

Summary: 2025/04/17 10:12

First reported date: 2014/05/16
Inquiry period : 2025/04/16 10:11 ~ 2025/04/17 10:11 (1 days), 4 search results

지난 7일 기간대비 75% 높은 트렌드를 보이고 있습니다.
지난 7일 기간대비 상승한 Top5 연관 키워드는 EDR Backdoor Windows Victim IoC 입니다.
악성코드 유형 Trojan TONESHELL AsyncRAT PlugX XWorm Lumma RAT NetWireRC 도 새롭게 확인됩니다.
공격자 MuddyWater 도 새롭게 확인됩니다.
공격기술 Dropper Stealer 도 새롭게 확인됩니다.
기관 및 기업 Zscaler Europe 도 새롭게 확인됩니다.
기타 Cobalt Strike c&c MUSTANG PANDA keylogger C2 등 신규 키워드도 확인됩니다.

Endpoint Detection and Response (EDR) solutions

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak | P2
    ㆍ 2025/04/17 Latest Mustang Panda Arsenal: ToneShell and StarProxy | P1
    ㆍ 2025/04/16 How Indicators of Compromise, Attack, and Behavior Help Spot and Stop Cyber Threats

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Cobalt Strike	4	▲ new
2	EDR	4	▲ 3 (75%)
3	Zscaler	3	▲ new
4	Backdoor	3	▲ 3 (100%)
5	Windows	3	▲ 3 (100%)
6	Victim	3	▲ 3 (100%)
7	c&c	3	▲ new
8	IoC	3	▲ 3 (100%)
9	Malware	3	▲ 2 (67%)
10	Update	3	▲ 3 (100%)
11	MUSTANG PANDA	3	▲ new
12	keylogger	3	▲ new
13	GitHub	2	▲ 2 (100%)
14	Advertising	2	▲ 1 (50%)
15	hijack	2	▲ 2 (100%)
16	Trojan	2	▲ new
17	Campaign	2	▲ 2 (100%)
18	Exploit	2	▲ 2 (100%)
19	target	2	▲ 2 (100%)
20	Operation	2	▲ 2 (100%)
21	TONESHELL	2	▲ new
22	GameoverP2P	2	▲ 2 (100%)
23	C2	1	▲ new
24	Government	1	▲ 1 (100%)
25	Europe	1	▲ new
26	AsyncRAT	1	▲ new
27	file	1	▲ new
28	StarProxy	1	▲ new
29	Kaspersky	1	▲ 1 (100%)
30	Microsoft	1	▲ 1 (100%)
31	schtasks	1	▲ new
32	PlugX	1	▲ new
33	attack	1	▲ 1 (100%)
34	Dropper	1	▲ new
35	SplatCloak	1	▲ new
36	driver	1	▲ new
37	server	1	▲ new
38	exploration	1	▲ new
39	UNIX	1	▲ new
40	XWorm	1	▲ new
41	MuddyWater	1	▲ new
42	Vulnerability	1	▲ 1 (100%)
43	Phishing	1	▲ 1 (100%)
44	United States	1	- 0 (0%)
45	Panda	1	▲ new
46	powershell	1	▲ 1 (100%)
47	Iran	1	▲ 1 (100%)
48	Lumma	1	▲ new
49	Vawtrak	1	▲ 1 (100%)
50	China	1	▲ 1 (100%)
51	Stealer	1	▲ new
52	Linux	1	▲ new
53	Mustang	1	▲ new
54	ThreatLabz	1	▲ new
55	ZeroDay	1	▲ 1 (100%)
56	RAT	1	▲ new
57	Email	1	▲ 1 (100%)
58	NetWireRC	1	▲ new
59	intelligence	1	▲ 1 (100%)
60	Mustan	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Trojan		2 (15.4%)
TONESHELL		2 (15.4%)
GameoverP2P		2 (15.4%)
AsyncRAT		1 (7.7%)
PlugX		1 (7.7%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
MuddyWater		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Backdoor		3 (25%)
hijack		2 (16.7%)
Campaign		2 (16.7%)
Exploit		2 (16.7%)
Dropper		1 (8.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Zscaler		3 (30%)
Government		1 (10%)
Europe		1 (10%)
Kaspersky		1 (10%)
Microsoft		1 (10%)

Threat info

Last 5

SNS

(Total : 1)

Total keyword

Zscaler Campaign keylogger EDR MUSTANG PANDA Cobalt Strike

No	Title	Date
1	Zscaler ThreatLabz @Threatlabz Zscaler ThreatLabz continues its exploration of Mustang Panda tools by analyzing two new keyloggers that we have named PAKLOG & CorKLOG, and an EDR tampering tool that we have named SplatCloak. Learn how this APT evades detection: https://t.co/xpSVDVTATu https://t.co/FNu1FmqIzd	2025.04.16

News

(Total : 3)

Total keyword

Backdoor Cobalt Strike EDR Update Victim c&c IoC Windows Malware Trojan MUSTANG PANDA Operation Zscaler target Exploit keylogger hijack TONESHELL GameoverP2P GitHub Advertising Attacker PlugX Government Dropper attack schtasks C2 Microsoft Kaspersky Europe AsyncRAT UNIX Iran NetWireRC MuddyWater Vulnerability Phishing Campaign United States powershell Lumma China XWorm Vawtrak Stealer Linux ZeroDay RAT Email intelligence

No	Title	Date
1	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
2	Latest Mustang Panda Arsenal: ToneShell and StarProxy \| P1 - Malware.News	2025.04.17
3	How Indicators of Compromise, Attack, and Behavior Help Spot and Stop Cyber Threats - Malware.News	2025.04.16

Additional information

No	Title	Date
1	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
2	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
3	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
4	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
5	6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin - Malware.News	2025.04.17
View only the last 5

No	Title	Date
1	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
2	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
3	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
4	Latest Mustang Panda Arsenal: ToneShell and StarProxy \| P1 - Malware.News	2025.04.17
5	Threat actors misuse Node.js to deliver malware and other malicious payloads - Malware.News	2025.04.16
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.