In Q1 2024, the Top 10 Malware observed at the Multi-State Information Sharing and Analysis Center (MS-ISAC) changed slightly with SocGholish leading at 60% followed by ArechClient2 and CoinMiner. Malvertisement and Dropped were key infection vectors, while malware like NanoCore, Agent Tesla, Lumma Stealer, and Ratenjay were also part of the list. The malware characteristics, infection vectors, and associated indicators of compromise (IOCs) for each of the Top 10 Malware including SocGholish, ArechClient2, CoinMiner, NanoCore, Agent Tesla, Lumma Stealer, Ratenjay, Jupyter, RogueRaticate, and Gh0st were detailed providing IP addresses, domains, and SHA256 hashes
The report by CIS serves as a resource to understand prevalent malware, their functionalities, and prevention strategies, offering insights to U.S. State, Local, Tribal, and Territorial (SLTT) government organizations. ```https://www.cisecurity.org/insights/blog/top-10-malware-q1-2024