Techblog | G DATA SECURITY BLOG

Techblog

Banking trojan masquerading as Chrome

15/04/2024

Android: Banking trojan masquerading as Chrome

Peeking under the hood

06/12/2023

csharp-streamer: Peeking under the hood

Looking for the Beacon

01/12/2023

Cobalt Strike: Looking for the Beacon

Unusual "ZPAQ" Archive Format Delivers Malware

20/11/2023

New "Agent Tesla" Variant: Unusual "ZPAQ" Archive Format Delivers Malware

What Hacking and Model Train Sets Have in Common

07/06/2023

A little History: What Hacking and Model Train Sets Have in Common

The real Evil Twin

16/03/2023

ChatGPT: The real Evil Twin

Identifying file manipulation in system files

21/09/2022

Identifying file manipulation in system files

The real reason why malware detection is hard—and underestimated

15/07/2022

The real reason why malware detection is hard—and underestimated

Criminals provide Ginzo stealer for free, now it is gaining traction

21/04/2022

Criminals provide Ginzo stealer for free, now it is gaining traction

1
Writing Signatures for .NET Malware

2
Unboxing Anubis: Exploring the Stealthy Tactics of FIN7's Latest Backdoor

3
Smoked out - Emmenhtal spreads SmokeLoader malware

4
Unveiling AsyncRAT

5
Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

6
BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell

7
A Kernel Land Rootkit Loader for FK_Undead

Our Authors

Karsten Hahn

Karsten Hahn

Principal Malware Researcher

Tim Berghoff

Tim Berghoff

Security Evangelist