Malware | G DATA SECURITY BLOG

Malware

ConnectUnwise: Threat actors abuse ConnectWise as builder for signed malware

23/06/2025

ConnectUnwise: Threat actors abuse ConnectWise as builder for signed malware

AsyncRAT

26/05/2025

Reborn in Rust: AsyncRAT

Printer company provided infected software downloads for half a year

15/05/2025

Printer company provided infected software downloads for half a year

Chihuahua Stealer: A new Breed of Infostealer

13/05/2025

Sit, Fetch, Steal - Chihuahua Stealer: A new Breed of Infostealer

Writing Signatures for .NET Malware

08/04/2025

100 Days of YARA: Writing Signatures for .NET Malware

Vidar Stealer: Revealing A New Deception Strategy

07/04/2025

Vidar Stealer: Revealing A New Deception Strategy

Booking a Threat: Inside LummaStealer's Fake reCAPTCHA

03/03/2025

Booking a Threat: Inside LummaStealer's Fake reCAPTCHA

Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

07/10/2024

Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

New Infostealer sighted in the wild

16/08/2024

Ailurophile: New Infostealer sighted in the wild

1
Writing Signatures for .NET Malware

2
Unboxing Anubis: Exploring the Stealthy Tactics of FIN7's Latest Backdoor

3
Smoked out - Emmenhtal spreads SmokeLoader malware

4
Unveiling AsyncRAT

5
Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

6
BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell

7
A Kernel Land Rootkit Loader for FK_Undead

Our Authors

Karsten Hahn

Karsten Hahn

Principal Malware Researcher

Tim Berghoff

Tim Berghoff

Security Evangelist