This report from AhnLab Security Intelligence Center (ASEC) analyzes malware collected in Q4 2024, categorizing it by type and providing detailed statistics on their distribution methods and features. Notably, CoinMiner and Banking malware are excluded due to low incidence. Affected: Infostealer, Downloader, Backdoor, Ransomware
Keypoints :
- AhnLab’s RAPIT system is used to analyze and categorize malware.
- The report focuses on malware collected in Q4 2024.
- Major malware types identified include Infostealer, Downloader, Backdoor, and Ransomware.
- Infostealer is the most prevalent type, distributed mainly through spam emails and crack programs.
- CoinMiner and Banking malware are excluded from the report due to low numbers.
MITRE Techniques :
- Infostealer (T1056) – Utilizes keylogging techniques to capture sensitive information.
- Downloader (T1203) – Downloads and executes malicious payloads from the internet.
- Backdoor (T1071) – Establishes a communication channel for remote access.
- Ransomware (T1486) – Encrypts files and demands ransom for decryption.
Indicator of Compromise :
- [domain] example.com
- [url] http://malicious-url.com
- [email] suspicious@example.com
- [file name] malicious_file.exe
- [file hash] 123456abcdef7890
- Check the article for all found IoCs.
Full Research: https://asec.ahnlab.com/en/85605/
Views: 1