To put it simply, there are some really cool threat detection technologies on the PolySwarm marketplace. As a recap, here at PolySwarm, we aggregate research-driven threat detection engines---both from AV companies and individual, specialized security experts---that compete in real-time to detect threats. Enterprises and individuals using PolySwarm benefit from deeper coverage of the malware landscape and unique threat intelligence from this aggregated network of engines.
Recent Posts
PolySwarm engine spotlight: researcher-driven engines detecting new and emergent malware
Mar 30, 2020 1:18:27 PM / by PolySwarm Tech Team posted in PolySwarm, Product, Research, Partner
PolySwarm Communities: Public vs Private
Mar 2, 2020 4:43:28 PM / by PolySwarm Tech Team posted in PolySwarm, Product
PolySwarm is a threat intelligence marketplace where users upload suspect artifacts (files, URLs, etc.) and receive threat intelligence in return. While legacy multiscanners like VirusTotal, offer a similar service, they often neglect the confidentiality needs of malware analysts, researchers, SOC teams, etc. that want restricted access and/or deeper levels of control on malware-sample sharing.
Video: How to use PolySwarm's free command line interface to get intel on malware
Jan 23, 2020 2:18:09 PM / by PolySwarm Tech Team posted in Explained, Product
Latest samples of ZeroCleare, Iranian state-sponsored malware, available on PolySwarm
Jan 9, 2020 2:09:01 PM / by PolySwarm Tech Team posted in Insider, Explained, PolySwarm, Threat Hunting, Research
Today, PolySwarm, a threat intelligence platform used to detect new and emerging malware, releases information about a new variant of ZeroCleare (a destructive malware attributed to Iran). PolySwarm Community (free) and Enterprise users were able access to the full content of this sample before it appeared on VirusTotal.
[Updated November 27, 2019]:
Emotet is a banking Trojan that was first identified by security researchers in 2014. Emotet was first designed as a banking malware that attempted to sneak onto computers and steal sensitive and private information. It has evolved over the last several years from a basic threat, and morphed into a customizable modular package and has been seen deploying additional payloads against financial institutions, enterprises, and consumers across the globe.
Ginp banking Trojan actively targeting banks: here's what you need to know, plus free malware samples
Nov 22, 2019 12:11:52 PM / by PolySwarm Tech Team posted in Explained, PolySwarm, Research
Ginp is a banking Trojan that is actively being used to impersonate targeted banking apps. The malware brings up a screen on the victims phone and displays a window that mimics the real banking app. First, one is prompted to login with their credentials. The second screen steals the victim's credit card details.
Free malware sample downloads, now available from PolySwarm
Oct 9, 2019 1:33:37 PM / by PolySwarm Tech Team posted in PolySwarm, Product, Research
PolySwarm users can now download malware samples completely free; sign-up for the free “Community” plan and get 10 malware-sample downloads per month.
How to use PolySwarm to get threat intel on “Divergent” fileless malware
Oct 3, 2019 6:09:58 PM / by PolySwarm Tech Team
Recently, Cisco Talos released a report about a piece of fileless malware dubbed “Divergent,” a malware loader being used to infect victims with this previously undocumented payload.