May 25, 2026
C2 Hosts: 2
Formbook
Also known as: win.xloader
FormBook contains a unique crypter RunPE that has unique behavioral patterns subject to detection. It was initially called "Babushka Crypter" by Insidemalware.
Linked Threat Actors
CobaltSWEED
C2 Infrastructure
Hosting/VPS 100%
Last 7 days
| Date | C2 Hosts |
|---|---|
| May 25, 2026 | 2 |
Further Reading
[CB19] Cyber Threat Landscape in Japan – Revealing Threat in the Shadow by Chi En Shen (Ashley) Oleg Bondarenko
The document discusses the cyber threat landscape in Japan, highlighting significant malware such as Emotet and Lokibot, which target financial institutions and gather sensitive data. It outlines r...
slideshare.net
IPFS: A New Data Frontier or a New Cybercriminal Hideout? | Trend Micro (US)
In this article, we briefly detail what IPFS is and how it works at the user level, before providing up to date statistics about the current usage of IPFS by cybercriminals, especially for hosting ...
trendmicro.com
Virus Bulletin :: VB2018 paper: Inside Formbook infostealer
Formbook is an infostealer that has been advertised for sale in public hacking forums since February 2016 by a user with the handle ‘ng-Coder' but only came to public attention after it was extensi...
virusbulletin.com
Xloader | ThreatLabz
This blog post provides a detailed analysis of Xloader C2 communications and its hosting network infrastructure.
zscaler.com
Xloader | ThreatLabz
Analysis of the new variant of Xloader information stealer malware that identifies itself as version 4.3, released on January 2023.
zscaler.com
Il polo italiano della Cyber Security
Costruiamo un digitale sicuro, insieme. Sicurezza, Resilienza, Innovazione Tinexta Cyber è una delle principali realtà italiane nel campo della cybersecurity e della system integration, parte del G...
yoroi.company