true
Blog OSINT Threat Report: Kovter Trojan Reemerges - Week of 4/5/19

OSINT Threat Report: Kovter Trojan Reemerges - Week of 4/5/19

Welcome to our OSINT Threat Report, a weekly digest of trending threats reported by TruSTAR platform users. Related posts here.

Given that Monday was April Fools this week’s trending threat results really made us do a double take.

njRAT Remains Prevalent

While njRAT remains at the top in terms of most seen malware on the TruSTAR platform we had a blast from the past with a big return of Pony. Pony is often seen with other malware such as Hancitor, which has been reported to have a new campaign running. It also often shows up with Gozi, Ursnif and others so don’t be surprised to see those correlated to reports of Pony malware.
 

Kovter Trojan Reemerges

Stranger still, Kovter rose to be the third most-seen malware on the platform. To some degree, this makes sense because Kovter can often be delivered by Pony. Kovter hasn’t been heavily reported since late 2018 and is best known for being “file-less” malware since its persistence method depends on registry keys.

View this OSINT Threat Report on TruSTAR to correlate IOCs with your own data:

View Report on TruSTAR

 

Not on TruSTAR yet? Request a demo, and in the meantime download IOCs via .txt file: 

  Download .txt File

Intelligence Sharing in the Time of COVID-19 Over the past few months, the world of information sharing has started to come together with security integration and automation. First, the ... Read More
COVID-19 Intelligence Briefing: What Happens Next? TruSTAR recently held an intelligence briefing with leaders from IBM X-Force IRIS, BAE Systems, and Intel471 to discuss the threatscape surrounding ... Read More
COVID-19 Intelligence Briefing: Adversary Attack Patterns & Knock-On Effects TruSTAR recently held an intelligence briefing with leaders from IBM X-Force IRIS, BAE Systems, and Intel471 to discuss the threatscape surrounding ... Read More
OSINT Threat Report: Nemty, the New Ransomware on the Block - Week of September 16 Welcome to our OSINT Threat Report, a weekly digest of trending threats reported by TruSTAR platform users. Related posts here. Read More