Advertisement · 728 × 90
#
Hashtag
#kesakode
Advertisement · 728 × 90
Malcat dev
Malcat dev
@malcat4ever.bsky.social
2 months ago

#kesakode DB updated to 1.0.48:

● new sigs: Crazyhunter, Echogather, IranBot, MaskGramStealer, PulsarRat and Themeforestrat
● 9 existing entries updated
● FP-fixed signatures: 82
● 1146 new clean programs whitelisted
● +527K unique functions
● +700K unique strings

1 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
3 months ago
Post image

#Malcat tip:

#Kesakode can be useful even when facing unknown/packed samples. Check "Show UNK" and focus on unique code and strings.

Here a simple downloader:

0 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
4 months ago

#Kesakode updated to 1.0.45 !

● New malware entries: Fullmetal, Laplas, RoningLoader, ShadowRat, Silentsweeper and SystemShock
● Updated malware entries: 29
● FP-fixed signatures: 931
● 16587 new clean programs whitelisted
● 3452882 new functions
● 165257 new strings

0 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
4 months ago

#kesakode DB update to 1.0.43, with again a focus on the clean set:
● 18 new malware entries
● 53 existing entries updated
● FP-fixed signatures: 749
● 5280 new clean programs whitelisted
● +2M unique functions
● +300K unique strings

1 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
5 months ago

#kesakode updated to 1.0.42:

* New entries: Brickstorm, Butoflex, Ladvix, NetStar, Pantegana, Tendyron, Tsunamikit and VampireBot

* Updated entries: AuraStealer, Latrodectus, NightshadeC2 and QNAPCrypt

* 33275 new clean programs whitelisted

* FP-fixed signatures: 1028

0 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
5 months ago

#Kesakode updated to 1.0.41:

Malware signatures:
* New malware entries: 14
* Updated malware entries: 16
* FP-fixed signatures: 1340

Files:
* 33 new malicious samples
* 52010 new clean programs

Database:
* 13093705 new unique functions
* 7778950 new unique strings

0 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
6 months ago

Updated #Kesakode to 1.0.39:
* New malware entries: HybridPetya, MostereRAT, PhantomStealer, SatanLockV2 and Yurei
* Updated malware entries: 38
* 3285 new library objects seen
* 2622 new clean programs whitelisted
* 905652 new unique functions
* 1330028 new unique strings

0 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
6 months ago
Post image

Updated #kesakode to 1.0.38:

Malware signatures:
* New malware entries: 20 new families
* 564116 new unique functions
* 197608 new unique strings
* 27 new unique constant fingerprints

1 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
8 months ago

#Kesakode DB has been updated to 1.0.36 !
* 9 new malware families
* 70 extended malware signatures
* 37 new malicious samples in database
* 11440 new library objects seen
* 120k new clean programs whitelisted
* 17M new unique functions
* 3M new unique strings

0 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
8 months ago

#Kesakode has been updated to 1.0.34!
* 34 new malware entries
* 249 extended malware signatures
* 50 new malicious samples in database
* 58950 new clean programs whitelisted
* 5459056 new unique functions
* 1862336 new unique strings

1 0 0 0
Malcat dev
Malcat dev
@malcat4ever.bsky.social
1 year ago
Post image

In the next version of #malcat, we will include an _offline_ smaller #kesakode database which will only contain conflict-free malware signatures.

This will be fast and run with every analysis. You can always get the full deal (clean + lib) afterwards with an online query.

0 0 0 0