Varist Partners with Eleven to Enhance Protection of Millions of Mailboxes
Varist ehf, a leading anti-malware company whose products are trusted by the largest cloud companies worldwide, announces a significant partnership with German cybersecurity firm eleven cyber security...
View ArticleVarist and OPSWAT Announce Partnership Agreement for Malware Protection
Varist, an Icelandic cybersecurity company that recently acquired the operating assets of Cyren’s anti-malware business, is excited to announce its latest partnership with OPSWAT. The agreement...
View ArticleClik here to view.
Phishing Hiding Under Google’s .app TLD Targets Northwest Radiology
Varist recently observed a phishing attack targeting a user at Northwest Radiology. Northwest Radiology is quoted as being “…one of the largest physician-owned radiology groups in central Indiana...
View ArticleConsidering UX when choosing Malware Detection technology
It has become common practice to consider end user experience when building software or software-as-a-service products. After all, in today’s easy-in/easy-out paradigm that has come with cloud...
View ArticleClik here to view.
Capcut’s Copycat Installs Trojan Stealer
While digging through a malicious document which I was working on earlier this week (SHA256: 1024f399ddef…8151c566), I took interest in a URL flagged as malicious by Varist Hybrid Analyzer as shown in...
View ArticleClik here to view.
The Duck Who Sneaked Through Feeds
Malicious Facebook Ads Malvertisements are one of many infection vectors that threat actors use. It gives them an advantage to pique the interest of unsuspecting users to fall victim to their attacks....
View ArticleClik here to view.
A Duck’s Trail
The Footprint We came across what seems to be a builder as the filename LnkBotBuilder_v4.zip implies. We also assume that it is already on version 4 via the string “v4”. A quick look at the extracted...
View ArticleClik here to view.
What Lies Beyond Innocent Looks
Discovery While hunting for malware we found an interesting Javascript sample, which appears to be benign and purposed to dynamically defining some object properties. But is that all there is to it?...
View ArticleClik here to view.
Multi-staged Downloader Leads to Infamous RAT
Brief Sometime around mid January we came across an interesting sample lurking around in our honeypot, so we decided to investigate further. The initial payload comes in a Microsoft Cabinet Archive...
View ArticleWordPress Website Owners: Beware of Balada
Varist continues to find examples of Balada Injector compromised websites via unpatched tagDiv WordPress plugins. Long time WordPress site infection campaign, the Balada Injector gang, has been...
View ArticleClik here to view.
Varist and Iceland Health Announce Partnership Agreement
We are thrilled to announce the partnership between Varist and Iceland Health (Sjúkratryggingar). Iceland Health is the government institution responsible for ensuring the rights of the insured and...
View ArticleClik here to view.
Guloader: Drops of Goo
TTP During the past few months, we encountered a handful of RTF and Visual Basic Scripts as attachments in emails. Targets of these crafted emails were Asian and European countries and a common...
View Article