Book a Demo
Back to blog

Intezer Analyze community roundup

Written by
Intezer
Intezer

Maze ransomware, APT41 and Lazarus highlight this month’s community samples

1. More_eggs variant with low Antivirus detections has modified string encoding mechanisms and other code changes

2. Penguin Turla sample shares 75 percent of its code with a sample first reported by Kaspersky in 2014

3. DragonOK (Chinese APT group) sample compiled in 2016 with no clear classification in VirusTotal shares 90 percent of its code with previously reported samples

4. Mozi malware sample first reported by CenturyLink. Like most IoT botnets this sample shares code with Mirai

5. Maze ransomware gets creative with its PDB paths “C:WuhanLabcoronashit.pdb”

6. Domestic Kitten first reported by Blackberry shares code with previous Dalvik samples from the same Iranian APT group

7. Carbanak variant unclassified on VirusTotal. Shares over 90 percent of its code with previous samples

8. Destover malware used by Lazarus group

Not an Intezer Analyze community user? Sign up for free at analyze.intezer.com to detect and classify malicious software in seconds.

Intezer
Intezer

Count on Intezer Forensic AI SOC to triage, investigate and respond to every alert at unmatched speed and accuracy.

In this article

Share this article
Recommended Blogs
27MIN READ

OrBit (Re)turns: Tracking an open-source Linux rootkit across four years of forks and deployments

Explore how OrBit, a two-stage malware, has changed over the last 4 years and why it matters for defenders.
blog cover for when to use generic AI for your SOC
7MIN READ

Generalist AI for your SOC: When and where to use it

Many security leader are asking the same question right now. We already pay for Microsoft Copilot, ChatGPT Enterprise, or Claude. Why buy anything else? Here's what you need to know.
ASL@Nasdaq blog post cover
5MIN READ

AI SOC Live at Nasdaq: Real conversation about modern security operations

The SOC is broken. Not because of a lack of talent or effort, but because human capacity does not scale. At AI SOC Live NASDAQ, we are bringing together the security leaders who are doing something about it.