Top Tweets for #ServHelper
We found a new sample of #ServHelper #Malware and the contacted domain.
md5: 9a31f70f5d05e033d1644f97ef1471ae
IOC: xgdhh33jfas[.]xyz
Check it out: https://t.co/Wt3Aly6xZE
#ThreatHunting #ThreatIntelligence #infosec #cybersecurity #cybercrime #SOC
![ThreatBookLabs's tweet photo. We found a new sample of #ServHelper #Malware and the contacted domain.
md5: 9a31f70f5d05e033d1644f97ef1471ae
IOC: xgdhh33jfas[.]xyz
Check it out: https://t.co/Wt3Aly6xZE
#ThreatHunting #ThreatIntelligence #infosec #cybersecurity #cybercrime #SOC https://t.co/5TANn6gkzq](https://pbs.twimg.com/media/F3QQb_bbwAAJTuu.jpg)
We found a new sample of #ServHelper #Malware and the contacted domain.
md5: 9a31f70f5d05e033d1644f97ef1471ae
IOC: xgdhh33jfas[.]xyz
Check it out: https://t.co/Wt3Aly6xZE
#ThreatHunting #ThreatIntelligence #infosec #cybersecurity #cybercrime #SOC
![ThreatBookLabs's tweet photo. We found a new sample of #ServHelper #Malware and the contacted domain.
md5: 9a31f70f5d05e033d1644f97ef1471ae
IOC: xgdhh33jfas[.]xyz
Check it out: https://t.co/Wt3Aly6xZE
#ThreatHunting #ThreatIntelligence #infosec #cybersecurity #cybercrime #SOC https://t.co/v0DtXshp0M](https://pbs.twimg.com/media/F3FrFZqbwAEW6Dp.jpg)
The most active #malware per day
#QakBot
#Mirai
#RedLineStealer
#Hajime
#CobaltStrike
#Amadey
#Gafgyt
#Gamaredon
#RemcosRAT
#ArkeiStealer
#ServHelper
#Vjw0rm
https://t.co/Tu84je0sFE
https://t.co/4X5bki1X76
#cybersecurity #infosec
#ThreatProtection #TA505's #TeslaGun control panel leveraged for #ServHelper #malware distribution, read more: https://t.co/2G7kCmPZAT

This week, @PRODAFT has issued a report 📋 detailing the #ServHelper backdoor and #TeslaGun panel used by the threat actor #TA505. https://t.co/aeQTcdnGuJ
(via @marqufabi) 🧵 1/6
In this week’s SnapShot, we dive into fresh intelligence about #EvilCorp and their use of #TeslaGun and #ServHelper.
Stay ahead of this threat with SnapAttack: https://t.co/XR6KS3PmQc

Researchers uncover "#TeslaGun," a previously undocumented software control panel used by the financially motivated cybercrime group #TA505 to manage its "#ServHelper" backdoor #malware attacks.
https://t.co/5KYgFlqbgU
#infosec #cybersecurity #hacking
#SERVHELPER
57214113a306cb06d2f41b4092c0c0ad3945ee7f5a8cc9381cfb4ba9ac2d8fc6
b5e776f84f8f01fcc1fb822ff5612afe62097bf367ced2187fda0b5bf3d652ee
d663075ec7881f4b6eaea014a6aac6973a72301aab7ec7381f919ce26c5d47c8
97586fd9125467569e05957083a51bcf3415436143b58772c786e330cc6abb86
#ThreatProtection #ServHelper #RAT distributed via latest #TA505 campaigns, read more: https://t.co/j1EjZdJpt8

👀🐀@TalosSecurity found that #ServHelper is being installed onto targeted systems using several different mechanisms, ranging from fake installers for popular software to using other #malware families such as Raccoon and Amadey as the installation proxies. Get all the details 👇
The #ServHelper RAT is really *serving* up some spoiled stuff to targets. We've spotted #GroupTA505 using this and other tools to steal credit card data and exfiltrate data https://t.co/kXU2avGQks

The #ServHelper RAT is really *serving* up some spoiled stuff to targets. We've spotted #GroupTA505 using this and other tools to steal credit card data and exfiltrate data https://t.co/kXU2avGQks

Mentioned Samples
https://t.co/WTPvRiPFV1
IoC in addiction
hXXps://asuvuyv7ew3hd.xyz/segka/b.php
#ServHelper
cc @verovaleros

🚨 Ad Hoc domain spreads @Filmora_Editor installation package, but is binder with malware!
The #Malware (#ServHelper) developed in Go and possibly from the #TA505 group!
ℹ️IoC:
wondershare-filmora[.]com
pgf5ga4g4b[.]cn
➡️ More Info and IoC:
https://t.co/GrP7Eh89lR
#mwitaly
![D3LabIT's tweet photo. 🚨 Ad Hoc domain spreads @Filmora_Editor installation package, but is binder with malware!
The #Malware (#ServHelper) developed in Go and possibly from the #TA505 group!
ℹ️IoC:
wondershare-filmora[.]com
pgf5ga4g4b[.]cn
➡️ More Info and IoC:
https://t.co/GrP7Eh89lR
#mwitaly https://t.co/n40VGSjMKj](https://pbs.twimg.com/media/E6vONooXICQyWP_.jpg)
#cybercrime, falso sito di @Filmora_Editor veicola #ServHelper. Gli esperti di #CyberSecurity di @D3LabIT: L’exe scaricato contiene uno zip con due eseguibili. Uno serve per installare il software lecito e l’altro è il #Malware stesso. #infosec https://t.co/YIIoV1pYgb
🚨 Ad Hoc domain spreads @Filmora_Editor installation package, but is binder with malware!
The #Malware (#ServHelper) developed in Go and possibly from the #TA505 group!
ℹ️IoC:
wondershare-filmora[.]com
pgf5ga4g4b[.]cn
➡️ More Info and IoC:
https://t.co/GrP7Eh89lR
#mwitaly
![D3LabIT's tweet photo. 🚨 Ad Hoc domain spreads @Filmora_Editor installation package, but is binder with malware!
The #Malware (#ServHelper) developed in Go and possibly from the #TA505 group!
ℹ️IoC:
wondershare-filmora[.]com
pgf5ga4g4b[.]cn
➡️ More Info and IoC:
https://t.co/GrP7Eh89lR
#mwitaly https://t.co/n40VGSjMKj](https://pbs.twimg.com/media/E6vONooXICQyWP_.jpg)
Collection of know #Signed "OOO Diamartis" Samples
including #RaccoonStealer / #servhelper /
✳️https://t.co/0nVyc1YdXu
❇️https://t.co/NSof7A3MFt
✳️https://t.co/FO16iV3gNg
H/T @malwrhunterteam
🔽hXXp://107.167.89. 175/dl/VNPhone.exe🔽

#ThreatProtection #GoLang encrypter used to load miner bots and #ServHelper. Learn how Symantec protects its customers: https://t.co/tqhfqrfR3h

On 1 case @Wanna_VanTa and I worked together on while in #ManagedDefense, #FIN11 went from phish 🎣 to a sampler platter 🍽 of malware deployed within a few hours:
-#SERVHELPER
-#BARBWIRE
-#CobaltStrike
-#Metasploit
-#TinyMet
That #BARBWIRE binary protocol C2 was fun to decrypt
Great to see the graduation of #FIN11. I remember responding to this group many times in #ManagedDefense with @bryceabdo. Best tools for responding to FIN11:
coffee, whistlepig, and tobacco. Respond wisely.
https://t.co/GBYClvy0Bx
Leseempfehlung aus dem 🇬🇧 G DATA Techblog:
Eine neue Variante von #ServHelper vereint #Backdoor und #Cryptomining. Kriminelle erhalten die Kontrolle über ein betroffenes System – und lassen es für sich arbeiten.
🔗 https://t.co/Hl9vYXnaVU

#ServHelper raddoppia: oltre alla #backdoor installa un miner
#Torijan #Cybersecurity #SicurezzaIT
https://t.co/BiHRiA7Wzr
Trends for you
Most Popular Users

Elon Musk 
@elonmusk
240.6M followers

Barack Obama 
@barackobama
119.2M followers

Donald J. Trump 
@realdonaldtrump
111.7M followers

Cristiano Ronaldo 
@cristiano
110.6M followers

Narendra Modi 
@narendramodi
107M followers

Rihanna 
@rihanna
97.6M followers

NASA 
@nasa
92.2M followers

Justin Bieber 
@justinbieber
90.9M followers

KATY PERRY 
@katyperry
87.6M followers

Taylor Swift 
@taylorswift13
81.5M followers

Lady Gaga 
@ladygaga
73M followers

Virat Kohli 
@imvkohli
69.9M followers

Kim Kardashian 
@kimkardashian
69.8M followers

YouTube 
@youtube
68.7M followers

Bill Gates 
@billgates
63.9M followers

Neymar Jr 
@neymarjr
62.6M followers

The Ellen Show
@theellenshow
62.4M followers

CNN 
@cnn
61.9M followers

X 
@x
60.8M followers

Selena Gomez 
@selenagomez
60.7M followers




















