all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

ModernLoader to Truebot via PNG

Add to bookmarks
April 8, 2023, 1:06 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

While perusing on VT I found a new C2 domain for TrueBot.


I have compiled a list of IOC’s denoting the infection chain and some notes related to it.


It starts with some JavaScript files. 4 of them have been identified and pointing to same TrueBot C2 ultimately.


At time of writing this, they all had low detection on VT, with 2 out of 59 engines falling them as malicious.


MD5

71e7a2549311647a6178b84393700bf8

4c75c5f63418b48ede30c16b079f324a

3c57867dc4bdeb8a7d55dfb7d8ef5008

287b172c23da5426cf039ef55d959fbd


 


As per comment from @thor_scanner …

detection domain february files infection ioc javascript list low malicious malware analysis md5 modernloader obfuscator png truebot writing

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Update: file-magic.py Version 0.0.8 9 hours ago | malware.news
article didier didier stevens file +11
Ticketmaster confirms customer data breach 13 hours ago | malware.news
breach cloud cloud database customer +18
What the Biggest-Ever Botnet Takedown Means 1 day, 9 hours ago | malware.news
botnet distribution financial industrial +5
Okta Cross-origin Authentication Feature in Customer Identity Cloud Targeted in Credential Stuffing Attacks 1 day, 11 hours ago | malware.news
access attacks authentication cloud +22
OpenAI report reveals threat actors using ChatGPT in influence operations 1 day, 11 hours ago | malware.news
article campaigns chatgpt disruption +12
Fake Bahrain Government Android App Steals Personal Data Used for Financial Fraud 1 day, 11 hours ago | malware.news
android android app app bahrain +17
Nearly 6M WordPress sites may be affected by bugs in 3 plug-ins 1 day, 12 hours ago | malware.news
article attacks bugs fastly +11
Senator Calls for FTC, SEC Probe Into UnitedHealth’s ‘Negligence’ in Breach 1 day, 13 hours ago | malware.news
article attack board breach +17
Vulnerability impacting Check Point Network Security Gateways (CVE-2024-24919) 1 day, 13 hours ago | malware.news
article canadian canadian centre for cyber security check +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com