Malwoverview, an open-source threat hunting tool, retrieves information from multiple public sandboxes to simplify initial triage of malware samples, URLs, IP addresses, domains, malware families, IOCs, and hashes. It presents relevant information such as similar executable malware samples and hash information, enabling professionals to understand threats before analysis. Its capabilities include checking suspect files and URLs, downloading malware samples, and retrieving IP information. Creator Alexandre Borges plans to expand its capabilities and integrate it into Linux distributions. The tool is free on GitHub.
CISA Details New RESURGE Malware Used In Ivanti Attacks
The U.S. Cybersecurity and Information Security Agency (CISA) has detected a new malware variant termed RESURGE, which can modify files and manipulate integrity checks. The
