Submit Release
News Search

There were 904 press releases posted in the last 24 hours and 447,501 in the last 365 days.

ANY.RUN monthly updates: New Detection Rules, Increased Threat Coverage, and More

DUBAI, UAE, July 5, 2023/EINPresswire.com/ -- ANY.RUN, a cloud interactive sandbox for malware analysis, has released a Monthly Updates: New Detection Rules, Increased Threat Coverage in their blog.

๐๐ซ๐จ๐๐ฎ๐œ๐ญ ๐ฎ๐ฉ๐๐š๐ญ๐ž๐ฌ

1. ๐‘๐ž๐ฌ๐ข๐๐ž๐ง๐ญ๐ข๐š๐ฅ ๐๐ซ๐จ๐ฑ๐ฒ. Users can now assign a home userโ€™s IP to virtual machines and change the location, making it easier to work with geo-targeted samples and evade detection.
2. ๐”๐ฉ๐๐š๐ญ๐ž๐ ๐๐ž๐Ÿ๐š๐ฎ๐ฅ๐ญ ๐›๐ซ๐จ๐ฐ๐ฌ๐ž๐ซ๐ฌ. On Windows 10 and 11 machines, ANY.RUN changed the default web browser to Edge, instead of the previously used Internet Explorer.
3. ๐ƒ๐จ๐ฐ๐ง๐ฅ๐จ๐š๐๐š๐›๐ฅ๐ž ๐ฆ๐ž๐ฆ๐จ๐ซ๐ฒ ๐๐ฎ๐ฆ๐ฉ๐ฌ. Users can now download memory dumps and analyze them locally. This option is available under the โ€œAdvanced detailsโ€ section of the process window.

๐Œ๐š๐ฅ๐ฐ๐š๐ซ๐ž ๐œ๐จ๐ง๐Ÿ๐ข๐  ๐ž๐ฑ๐ญ๐ซ๐š๐œ๐ญ๐จ๐ซ๐ฌ

ANY.RUN has added 4 new extractors to the sandbox: PrivateLoader, Typhon, LaplasClipper and LummaStealer. Also, ANY.RUN has completely updated AgentTesla's config extractors.

๐˜๐€๐‘๐€ ๐ซ๐ฎ๐ฅ๐ž๐ฌ

ANY.RUN released YARA rules that detect ๐ ๐ก๐ŸŽ๐ฌ๐ญ๐›๐ข๐ง๐ฌ and ๐ณ๐ ๐ซ๐š๐ญ.

๐๐ž๐ฐ ๐Œ๐š๐ฅ๐ฐ๐š๐ซ๐ž ๐š๐ง๐ ๐“๐ก๐ซ๐ž๐š๐ญ ๐ƒ๐ž๐ญ๐ž๐œ๐ญ๐ข๐จ๐ง ๐‘๐ฎ๐ฅ๐ž๐ฌ

โ€ข 367 new detection rules added.
โ€ข QuasarRAT connection detection.
โ€ข Added 9 rules to detect suspicious PowerShell scripts.
โ€ข Gh0stCringe tool detection.
โ€ข Exfiltration to Discord and Telegram.

๐ˆ๐ง๐œ๐ซ๐ž๐š๐ฌ๐ž๐ ๐ญ๐ก๐ซ๐ž๐š๐ญ ๐œ๐จ๐ฏ๐ž๐ซ๐š๐ ๐ž

โ€ข Bibleoteka backdoor discovery.
โ€ข PseudoManuscrypt access.
โ€ข Malware on file-sharing services.
โ€ข Faster Xworm detection.
โ€ข Response to Medusa Stealer.

๐€๐๐˜.๐‘๐”๐ โ€‹โ€‹๐œ๐จ๐จ๐ฉ๐ž๐ซ๐š๐ญ๐ข๐จ๐ง ๐ฐ๐ข๐ญ๐ก ๐„๐“ ๐‹๐š๐›๐ฌ

Now ANY.RUN shares their rules with the community, ObserverStealer, Medusa Stealer, RisePro TCP v.0.1, Lumma Stealer Configuration, StatusRecorder, and DynamicRAT signatures have been added.

The ANY.RUN team works hard to keep up with emerging threats.

Read more with examples in the article at ANY.RUN.

Vlada Belousova
ANYRUN FZCO
2027889264
email us here
Visit us on social media:
Twitter
YouTube

Legal Disclaimer:

EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.

You just read:

ANY.RUN monthly updates: New Detection Rules, Increased Threat Coverage, and More

Distribution channels: Business & Economy, Companies, Electronics Industry, IT Industry, Technology


EIN Presswire's priority is author transparency. We do our best to weed out false and misleading content. The content above is the sole responsibility of the author who makes it available. If you have any complaints, kindly contact the author above.

By continuing to use this site, you agree to our Terms & Conditions, last updated on September 30, 2025.