Techblog | G DATA SECURITY BLOG

Techblog

Banking trojan masquerading as Chrome

04/15/2024

Android: Banking trojan masquerading as Chrome

Peeking under the hood

12/06/2023

csharp-streamer: Peeking under the hood

Looking for the Beacon

12/01/2023

Cobalt Strike: Looking for the Beacon

Unusual "ZPAQ" Archive Format Delivers Malware

11/20/2023

New "Agent Tesla" Variant: Unusual "ZPAQ" Archive Format Delivers Malware

What Hacking and Model Train Sets Have in Common

06/07/2023

A little History: What Hacking and Model Train Sets Have in Common

The real Evil Twin

03/16/2023

ChatGPT: The real Evil Twin

Identifying file manipulation in system files

09/21/2022

Identifying file manipulation in system files

The real reason why malware detection is hard—and underestimated

07/15/2022

The real reason why malware detection is hard—and underestimated

Criminals provide Ginzo stealer for free, now it is gaining traction

04/21/2022

Criminals provide Ginzo stealer for free, now it is gaining traction

1
Writing Signatures for .NET Malware

2
Unboxing Anubis: Exploring the Stealthy Tactics of FIN7's Latest Backdoor

3
Smoked out - Emmenhtal spreads SmokeLoader malware

4
Unveiling AsyncRAT

5
Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

6
BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell

7
A Kernel Land Rootkit Loader for FK_Undead

Our Authors

Karsten Hahn

Karsten Hahn

Principal Malware Researcher

Tim Berghoff

Tim Berghoff

Security Evangelist