Malware | G DATA SECURITY BLOG

Malware

New Java STRRAT ships with .crimson ransomware module

16/06/2020

New Java STRRAT ships with .crimson ransomware module

Dumping COVID-19.jar with Java Instrumentation

26/05/2020

Dumping COVID-19.jar with Java Instrumentation

PE trick explained: Telling 32 and 64 bit apart with naked eye

19/05/2020

PE trick explained: Telling 32 and 64 bit apart with naked eye

Netwire RAT via paste.ee and MS Excel to German users

14/05/2020

Spam campaign: Netwire RAT via paste.ee and MS Excel to German users

Pekraut - German RAT starts gnawing

02/04/2020

Pekraut - German RAT starts gnawing

Malware samples threaten PCs and networks every few seconds

03/03/2020

Well-disguised attacks: Malware samples threaten PCs and networks every few seconds

Bitbucket Abused as Malware Slinger

06/02/2020

40,000 CryptBot Downloads per Day: Bitbucket Abused as Malware Slinger

Remote access malware utilizes second desktop to control browsers

21/11/2019

New SectopRAT: Remote access malware utilizes second desktop to control browsers

Attending AllStars 2019

11/11/2019

Learning from the best: Attending AllStars 2019

1
Writing Signatures for .NET Malware

2
Unboxing Anubis: Exploring the Stealthy Tactics of FIN7's Latest Backdoor

3
Smoked out - Emmenhtal spreads SmokeLoader malware

4
Unveiling AsyncRAT

5
Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

6
BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell

7
A Kernel Land Rootkit Loader for FK_Undead

Our Authors

Karsten Hahn

Karsten Hahn

Principal Malware Researcher

Tim Berghoff

Tim Berghoff

Security Evangelist