AlienVault research engineer, Alberto Ortega has identified two Yara rules that will help malware analysts and incident responders to detect, classify and track the malware arsenal of the recently leaked KINS toolkit.
KINS is a professional-grade banking trojan, designed to infect as many computers as possible in order to steal credit cards, bank account credentials and related information from victims. Seen as a replacement to Citadel, it was identified in the wild not long ago. Now, this leak can lead to new variants and malware families.
After he studied the components, Alberto has written two yara rules to match the dropper and the zeus version used as bot. They are freely available to use and will help infosec practitioners identify and track KINS.
For more information, please visit here.
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Celebrating Data Privacy Day – 28th January 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Most Active Commenters
Recent Comments
There are a number of commonly used verification tools out…
Phishing remains a relentless and highly effective cybersecurity threat. Despite…
Each year, Cybersecurity Awareness Month serves as a valuable reminder…
Chat systems such as Slack and Teams need to be…
“This is a sophisticated phishing scam that will catch out…