I been saying for years, we don't f eat bats in china!!! It was fake racist news n people who believe that r idiots. Bats have never been a thing full of diseases and have no meat. Those fakebat articles of them in soup pictures were from the Philippines.

3/ A second loader, named #MaskBat, was also observed. It shares traits with FakeBat but is notably more obfuscated and contains distinct string artifacts linked to GrayAlpha.

FakeBat recycling old certs? This sample appeared signed with JJK Software Oy via SSL.com. Previously reported in December 2024 via Certum. Some funny VT comments here re-assuring readers the file is 100% safe. virustotal.com/gui/file/eca7…

I've hand-animated all the Malmons I designed so far! ✍ If you'd like my Malmons animated stickers for your Discord, Slack, etc. servers, please comment down below, and I'll send them to you! The latest Malmons list: - GaboonGrabber - Raspberry Robin - Noodle RAT - LitterDrifter - Gh0st RAT - Stuxnet - FakeBat - PoisonIvy - WannaCry - Slammer - Petya - NotPetya - ILOVEYOU - SugarGh0st RAT - Rhadamanthys - Flame - BFOD (Blue Falcon of Death) - Olympic Destroyer - Sick Anubis - WhiteSnake - TrickBot - Raccoon - BootKitty - WarmCookie - PurpleFox - BlackEnergy - Pegasus - Sub7 - SocGholish - DarkPulsar - Industroyer The Gen 1 Malmons merch is now available on the @MalwareVillage store! 🛍️ malwarevillage.myshopify.com Malmons is now part of my @MalwareVillage, so please consider donating to Malware Village to help me continue creating more cool Malmons content and running Malware Village! BuyMeACoffee Page: buymeacoffee.com/malwarevill… Malmons aka Malware Monsters © 2025 Lena Yu aka LambdaMamba. All rights reserved. #malmons #malwaremonsters #malwarevillage

My Malmons stickers have arrived! 🥳 This sticker pack consists of GaboonGrabber, Raspberry Robin, Noodle RAT, LitterDrifter, Gh0st RAT, Stuxnet, FakeBat, PoisonIvy, and WannaCry! 👾 (Transparent background stickers btw! 👻)

Merry Christmas and Happy New Year, everyone! 🎄 As 2024 comes to an end, I’m wrapping up the first run of Malmons, also known as Malware Monsters! All of the Malmons are designed and hand-drawn by me. ✍ Gen 1 Malmons: - GaboonGrabber - Raspberry Robin - Noodle RAT - LitterDrifter - Gh0st RAT - Stuxnet - FakeBat - PoisonIvy - WannaCry - Slammer - Petya - NotPetya - ILOVEYOU - SugarGh0st RAT - Rhadamanthys - Flame - BFOD (Blue Falcon of Death) - Olympic Destroyer - Sick Anubis (Inspired by @likethekings MARC I submission!) Gen 2 Malmons: - WhiteSnake - TrickBot - Raccoon - BootKitty - WarmCookie - PurpleFox - BlackEnergy - Pegasus - Sub7 - SocGholish - DarkPulsar - Industroyer The Gen 1 Malmons merch is now available on the @MalwareVillage store! 🛍️ malwarevillage.myshopify.com… Malmons is now part of my @MalwareVillage, so please consider donating to Malware Village to help me continue creating more cool Malmons content and running Malware Village! BuyMeACoffee Page: buymeacoffee.com/malwarevill… Malmons aka Malware Monsters © 2024 Lena Yu aka LambdaMamba. All rights reserved. #malmons #malwaremonsters #malwarevillage

I’ve designed a few more new Malmons, and here’s the latest list! ✍️ Gen 1 Malmons: - GaboonGrabber - Raspberry Robin - Noodle RAT - LitterDrifter - Gh0st RAT - Stuxnet - FakeBat - PoisonIvy - WannaCry - Slammer - Petya - NotPetya - ILOVEYOU - SugarGh0st RAT - Rhadamanthys - Flame - BFOD (Blue Falcon of Death) - Olympic Destroyer Gen 2 Malmons: - Sick Anubis (Inspired by @likethekings MARC I submission!) - WhiteSnake - TrickBot - Raccoon - BootKitty - WarmCookie - PurpleFox - Industroyer - Pegasus The Gen 1 Malmons merch is now available on the @MalwareVillage store! 🛍️ malwarevillage.myshopify.com Malmons aka Malware Monsters © 2024 Lena Yu aka LambdaMamba. All rights reserved. #malmons #malwaremonsters

This is the newest list of Malmons (Malware Monsters) I’ve designed! ✍️ Gen 1 Malmons: - GaboonGrabber - Raspberry Robin - Noodle RAT - LitterDrifter - Gh0st RAT - Stuxnet - FakeBat - PoisonIvy - WannaCry - Slammer - Petya - NotPetya - ILOVEYOU - SugarGh0st RAT - Rhadamanthys - Flame - BFOD (Blue Falcon of Death) - Olympic Destroyer Gen 2 Malmons: - Sick Anubis (Inspired by @likethekings MARC I submission!) - WhiteSnake - TrickBot - Raccoon - BootKitty - WarmCookie - PurpleFox The Gen 1 Malmons merch is now available on the @MalwareVillage store! 🛍️ malwarevillage.myshopify.com Malmons aka Malware Monsters © 2024 Lena Yu aka LambdaMamba. All rights reserved. #malmons #malwaremonsters

The Malmon patches I designed are now on sale on the @MalwareVillage store! 🛍️ malwarevillage.myshopify.com Gen 1 Malmons include: - GaboonGrabber - Raspberry Robin - Noodle RAT - LitterDrifter - Gh0st RAT - Stuxnet - FakeBat - PoisonIvy - WannaCry - Slammer - Petya - NotPetya - ILOVEYOU - SugarGh0st RAT - Rhadamanthys - Flame - BFOD (Blue Falcon of Death) - Olympic Destroyer #malmons #malwarevillage

These are the Malmons (aka Malware Monsters) I've designed so far! All of these are designed and hand-drawn by me! ✍ Gen 1 Malmons: - GaboonGrabber - Raspberry Robin - Noodle RAT - LitterDrifter - Gh0st RAT - Stuxnet - FakeBat - PoisonIvy - WannaCry - Slammer - Petya - NotPetya - ILOVEYOU - SugarGh0st RAT - Rhadamanthys - Flame - BFOD (Blue Falcon of Death) - Olympic Destroyer Gen 2 Malmons: - Sick Anubis (Inspired by @likethekings MARC I submission!) - WhiteSnake - TrickBot - Raccoon - BootKitty ... and more to come! The Gen 1 Malmons merch is now available on the @MalwareVillage store! 🛍️ malwarevillage.myshopify.com Malmons aka Malware Monsters © 2024 Lena Yu aka LambdaMamba. All rights reserved. #malmons #malwaremonsters

I’ve finished designing embroidered patches for Gen 1 Malmons! ✍️ These will be up for sale soon on our @MalwareVillage website (malwarevillage.org) soon, so stay tuned!!! 😆 Gen 1 Malmons: - GaboonGrabber - Slammer - Petya - NotPetya - Flame - Stuxnet - Noodle RAT - Olympic Destroyer - PoisonIvy - WannaCry - BFOD (Blue Falcon Of Death) - SugarGh0st RAT - Gh0st RAT - Rhadamanthys - FakeBAT - LitterDrifter - Raspberry Robin - ILOVEYOU #malmons #malwarevillage

After a months-long hiatus, FakeBat (aka Eugenloader or PaykLoader) is being delivered through a malicious brand impersonation ad for Notion. Read our research on how criminals are targeting victims and what payloads are being delivered post infection. malwarebytes.com/blog/news/2…

@The_Cyber_News Hackers Abusing Google Ads To Deliver Fakebat Malware Source: cybersecuritynews.com/fakeba… A malicious Google ad is impersonating Notion, a widely used productivity application. The ad appeared at the top of search results and looked completely legitimate, with an official logo and website. However, clicking on it led users through a series of redirects before ultimately delivering the Fakebat malware. #cybersecurity

FakeBat Loader Reemerges: Malicious Google Ads Target Notion Users securityonline.info/fakebat-…

Some #FakeBat > LummaStealer Related Samples 🔱bazaar.abuse.ch/browse/tag/n… Malicious Notion installer "3.appx" 34c46b358a139f1a472b0120a95b4f21d32be5c93bc2d1a5608efb557aa0b9de AnyRun ❇️app.any.run/tasks/4657942e-8…

While hunting for #FakeBat infra, I stumbled across an opendir at 176.111.174[.]138 containing SystemBC and batch files to initiate ngrok proxy that was mentioned in the DFIR report thedfirreport.com/2024/08/12…. SystemBC has the same configurations Pretty sure it's the same TA... suspiciously being on the same subnet (asn: 57523) as the FakeBat staging domains 🤔

FatBat or should I say... #FakeBat is back? 🦇 Great article by Jerome going through the recent findings If you wonder how come the domain appears exactly the same as the legitimate ones in Google Ads, the image below is a good overview. malwarebytes.com/blog/news/2…

This is so cool. You can hunt for #FakeBat C2s with @ValidinLLC using the banner hash (37875588c49849c2fed4de1eb787de1b) I am so in love with this tool 😍

IoCs shared on ThreatFox: threatfox.abuse.ch/browse/ma… Sekoia.io blog post on FakeBat and its distribution infrastructure: blog.sekoia.io/exposing-fake…

#FakeBat malware masquerading as popular VPN (NordVPN, ExpressVPN, Surfshark, PIA VPN, PrivateVPN) Victims download a malicious .APPX running FakeBat PowerShell 🔗 Distribution: 80.66.81.]199 nordvpnos.]com expressovvpn.]com sufsharkos.]com vpnspia.]com privatevpnos.]com ⬇️