Strange PPT maldoc with low detection rates since 2022-02-02. MD5: c0060c0741833af67121390922c44f91. PPT file>wscript.exe>powershell.exe>rundll32.exe. [+]Exec wscript when user moves mouse.[+]Wscript exec powershell.[+]PS download the XORed DLL. [+]Exec it using rundll32.exe

🚨#Phishing #Pdf File Evaded All The AV Solutions 🚨. 📌VT 0/61. 📂Filename: Ziraat.pdf.🔐MD5: 4105ec3dc57e1dc3929ec0be0054aad5.🕵️IoCs: DOCGuard Analysis:

🚨#Malicious #PowerPoint File Evaded Most The AV Solutions🚨. 📌VT Detections 2/64. 📂Filename: Supplier_0202AW.ppsm.🔐MD5:b8bcf5bbe2d94c49ff13a89a2b700af4.🕵️IoCs:

🚨 #Phishing PDF File Evaded All The AV Solutions🚨.⚠️ #FakeMicrosoftLoginPanel ⚠️. 📌 VT Detection: 0 / 65. 📁 Filename: Dussmann Kalte- und Klimatechnik GmbH Zahlung.pdf.🔐 MD5: ecae32462944be54e54e01d2c978c82d.🕵️‍♂️ IOCs:.- (DOMAIN)

🚨 #Malicious #Excel File Evaded Most Of The AV Solutions 🚨.⚠️ Malicious AutoHotkey File ⚠️. 📌 VT Detection: 2 / 63. 📁 Filename: Resource_Allocation_Audit.xlsm.🔐 MD5: 9322fbcce010b89e4abb9b17d55a3339.🕵️‍♂️ IOCs:.- (IP) 52.109.76.240. DOCGuard Report:

🚨 #Phishing HTML File Evaded All The AV Solutions🚨.⚠️ Fake Microsoft Login Panel ⚠️. 📌 VT Detection: 1 / 62. 📁 Filename: SecureMessageATT.html.🔐 MD5: c2c9d016210430afe67c65664708260b.🕵️‍♂️ IOCs:.- (DOMAIN) eyidiyw9yo[.]kimmythepet[.]shop. DOCGuard Report:

🚨 #Malicious #Word File Targeting Browser Credentials 🚨.⚠️ Python Based #Stealer With Telegram API ⚠️. 📌 VT Detection: 8 / 67. 📁 Filename: Doc1.docm.🔐 MD5: 0fee354732496cdbdb4e78ecb218a81a. Visit DOCGuard Report for IOCs and Malicious Macros:

🚨 #Malicious #Excel File Evaded Nearly All the AV Solutions 🚨. 📌 VT Detection: 11 / 65. 📁 Filename: HSBC Advice_ACH_Credit_08082024 (1).xls.🔐 MD5: 30dda8925527f67ecf7d7d8bb2a44006.🕵️‍♂️ IOCs:.- (IP) 192.3.243[.]147.- (MD5) f904e8a5141b08f3f8e2121459f539fe.- (MD5)

🚨 #Malicious #LNK File Evaded Most of the AV Solutions 🚨.⚠️ Various Malicious #MSI Files at Storj Link ⚠️. 📌 VT Detection: 3 / 56. 📁 Filename: 505031.lnk.🔐 MD5: b71e208eab8215c3ea77aeb6d89260a9.🕵️‍♂️ IOCs:.- (URL) freitaslogistica[.]com.- (MD5) d73bdbc6566f8eacc32c575a5da9f383

🔍 Top 10 Most Common Malware Families in the Wild 🔍. In the constantly changing field of cybersecurity, it is essential to stay updated on the most common malware risks. Listed below are the top 10 malware families that have been commonly identified recently, presenting

👀 Someone's Trying to Create Malicious LNK File. (SHA256) 1002d0b0909474c4ff12eab8e94dbf0b00df8c82fdb21fbc7e8363613c1f0da4. (SHA256) 04be2ed6362162ca679535f72d6ab5287f51bb10a38a5c55fd76cd3d25869227. (SHA256) a8d76ad4a3467e9b57424f266709849c6aabfab96c1ebcb0aceae798b561bfc0

🚨 Malicious Excel File Evaded Most of the AV Solutions 🚨. 📌 VT Detection: 6 / 49. 📁 Filename: DRWG-347RB1.pd.xls.🔐 MD5: c433eae598bb293ae5c2f28ad9a61c3b.🕵️‍♂️ IOCs:.- 54.38.139[.]98.-jx[.]ax. DOCGuard Report:

🚨 Similar CHM File Evaded Most of the AV Solutions 🚨. 📌 VT Detection: 4 / 64. 📁 Filename: Joint working group.pdf.chm.🔐 MD5: b445f85edab25e9216874ca8cad0efb5.🕵️‍♂️ IOCs:.- littlehipsononline[.]com. DOCGuard Report:

🚨 Info Stealer CHM File Evaded All the AV Solutions 🚨. 📌 VT Detection: 1 / 64. 📁 Filename: CamScanner 10-07-2024 10.40.chm.🔐 MD5: 16807cb880073b1c21009f7749c8fe7f.⚠️ Used Techniques:.- Obfuscation of CMD command in CHM file.- Persistence (Task Scheduling).- Gathering system

🚨 Monthly Malware Detection Analysis 🚨. Over the past month, our analysis using DocGuard has identified various types of malware. Here are the statistics based on the detection names of these threats:. 📊 Top Detection Names:.TrojanDownloader/FakejQuery.Js.Malware.Autolike

✍️ New Blog Post. 👉 Analysis of Malicious Word Document: Python Based Malware Targeting Browser Data. 📊 The Python-based malware from a Word document targets sensitive information stored in browsers, such as cookies and saved passwords, collecting and transmitting it to a

📊 Phishing E-mail Campaign Analysis by DocGuard📊 . Our recent analysis examined approximately 3,000 phishing emails📂 and identified the top five most commonly used subjects by threat actors in their campaigns. The study reveals the tactics and trends that attackers use to

🚨 Similar Malicious LNK Files Have Proliferated Recently 🚨. ☠️ Infection Flow: LNK File -> EXE -> Script (HTA) -> Javascript (2) -> Powershell -> EXE. 🕵️‍♂️ IOCs:.- (MD5) 9dac79de17f1cb6d75b6e6928eded598.- (MD5) a340d298b29992fdb8c00ef832f7ae34.- (MD5)

DOCGuard provides up-to-the-minute analytics of #malware analysis queries, delivering actionable #intelligence for #security professionals. Key Highlights:.🔍 Real-Time #DataInsights.📊 Evolving #Threat Patterns.🚀 Enhanced #Detection Algorithms.🛡️ Strengthening #CyberDefenses

Sign up in seconds and DETECT MALWARE IN SECONDS!.

In the rapidly evolving world of #cyberthreats, traditional #antivirus software often fails to detect new and sophisticated #malware. DocGuard fills this gap, providing a more secure digital experience! .