Raton / Silly – Remote Access Trojan | Technical Malware Analysis Report
Reports Reports Technical Malware Analysis Report Download Report As ThreatMon, we strive to prevent potential malicious activities by informing individuals, companies, firms, institutions, and organizations about current threats through our reports, posts, and analyses. Raton Access Tool (SillyRAT) is a highly capable open-source Remote Access Trojan (RAT) developed in C#. It provides cybercriminals with a […]
Google Chrome DLL SIDE LOADING METHOD
Reports Reports Google Chrome DLL Side Loading Method Download Report Key findings reveal this attack specifically targets Chrome’s DLL mechanism through the manipulation of chrome_elf.dll, with evidence of active trading on dark web forums. The malware uses Chrome’s GetInstallDetailsPayload function as an entry point and incorporates sophisticated evasion tactics including VM/sandbox detection and anti-debugging techniques. […]
Helldown Ransomware Technical & Malware Analysis Report
Reports Reports Download Report As ThreatMon, we strive to prevent potential malicious activities by informing individuals, companies, firms, institutions, and organizations about current threats through our reports, posts, and analyses. The Helldown ransomware group emerged as a significant cyber threat in August 2024, demonstrating sophisticated capabilities in targeting both Linux and Windows systems across multiple […]
X-ZIGZAG RAT Technical & Malware Analysis Report
X-ZIGZAG RAT is a sophisticated malware first detected on October 5, 2024, targeting Windows systems. It operates entirely in RAM, evading detection by most antivirus software that relies on disk scanning.
Amnesia Stealer Technical & Malware Analysis Report
The Amnesia Stealer is a highly sophisticated, customizable malware identified by ThreatMon on September 17 2024, representing a serious threat due to its open-source nature and widespread availability on underground forums.
Ailurophile Stealer Technical & Malware Analysis Report
The Ailurophile Stealer, first detected by ThreatMon on August 15, 2024, is a dangerous information-stealing malware that operates as a service, hosted on publicly accessible domains such as ailurophilestealer.com and ailurophilestealer
CyberVolk Ransomware Technical & Malware Analysis Report
CyberVolk Group is a threat actor group originating from India. It is one of the members of the Holy League organization, established by APT 44 and other Russian/Russian-aligned hackers to carry out attacks against NATO, Ukraine, and states opposing Russia.
Kematian Stealer Technical Analysis Report
Kematian Stealer is a PowerShell-based stealer malware tool designed to infiltrate and extract data from Windows systems effortlessly. Despite being open-source and not for financial gain, it was developed by six contributors who participated in the project’s release. Kematian Stealer showcases its advanced level with its features and included builder software.
As ThreatMon, we strive to prevent potential malicious activities by informing individuals, companies, firms, institutions, and organizations about current threats through our reports, posts, and analyses.
XZ Utils Backdoor CVE-2024-3094
The discovery of the XZ Backdoor vulnerability has shaken the cybersecurity community. It revealed a serious breach with significant implications for the security of open-source software. This troubling discovery began with seemingly harmless contributions to the widely used compression tool XZ Utils.
RisePro Stealer Malware Analysis Report
RisePro Stealer is a popular malware that compromises user privacy and security. This malware targets a wide range of sensitive data from popular web browsers, crypto wallets, and communication platforms.