Malware | G DATA SECURITY BLOG

Malware

DLL Fixer leads to Cyrat Ransomware

09/01/2020

DLL Fixer leads to Cyrat Ransomware

Hidden Miners

07/09/2020

ServHelper: Hidden Miners

Ransomware tries to worm

07/03/2020

Try2Cry: Ransomware tries to worm

Number of cyber attacks increases significantly in the first quarter

07/02/2020

G DATA threat report: Number of cyber attacks increases significantly in the first quarter

Buran’s transformation into Zeppelin

06/30/2020

Ransomware on the Rise: Buran’s transformation into Zeppelin

New Java STRRAT ships with .crimson ransomware module

06/16/2020

New Java STRRAT ships with .crimson ransomware module

Dumping COVID-19.jar with Java Instrumentation

05/26/2020

Dumping COVID-19.jar with Java Instrumentation

PE trick explained: Telling 32 and 64 bit apart with naked eye

05/19/2020

PE trick explained: Telling 32 and 64 bit apart with naked eye

Netwire RAT via paste.ee and MS Excel to German users

05/14/2020

Spam campaign: Netwire RAT via paste.ee and MS Excel to German users

1
Writing Signatures for .NET Malware

2
Unboxing Anubis: Exploring the Stealthy Tactics of FIN7's Latest Backdoor

3
Smoked out - Emmenhtal spreads SmokeLoader malware

4
Unveiling AsyncRAT

5
Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

6
BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell

7
A Kernel Land Rootkit Loader for FK_Undead

Our Authors

Karsten Hahn

Karsten Hahn

Principal Malware Researcher

Tim Berghoff

Tim Berghoff

Security Evangelist