Joe Security's Blog
RSS Feed Atom Feed

Deep Malware Analysis of a Multi-Stage Cobalt Strike Loader

In this blog post, we provide a detailed technical reconstruction of a multi-stage malware chain that ultimately delivers a Cobalt Strike Beacon.The sample was obtained from the following Joe Sandbox Cloud Basic analysis:https://www.joesandbox.com/analysis/1894688/1/htmlOur investigation began with a low-signal sample that initially appeared harmless.

Joe Reverser 1.0.0 Silver Wolf

Today, we are proud to announce the official release of Joe Reverser 1.0.0 “Silver Wolf”, marking the transition from Beta to a stable production version.Silver Wolf introduces powerful new and enhanced capabilities designed for deep analysis of malware and phishing attacks.

Joe Sandbox v44 - Smoke Quartz

Today, we are proud to release Joe Sandbox 44 under the code name Smoke Quartz ! This release is packed with many new detection signatures and important features to improve Joe Sandbox.Our Joe Sandbox Cloud Pro, Basic, and OEM servers have recently been upgraded to Smoke Quartz.If you wish to upgrade your on-premise Joe Sandbox installation, please follow the instructions in the chapter on "Updating" in the user guide which you find in our customer portal. 339 new SignaturesSmoke Quartz comes with a very large number of new Yara and Behavior signatures to detect new malware families like TrashAgent, UDPGangster, ArliaiBot, ChromElevator, Sicari Ransomware, DeskRAT, Apollo Logger, SHub Stealer, DriverFixer0428, DigitStealer, Aisuru, Heaven Stealer, TOLLBOOTH and Scarface Stealer and many more.