Bunnyloader

Malware Profile Updated 3 days ago
Download STIX
Preview STIX
BunnyLoader, a new malware-as-a-service (MaaS), has recently surfaced in the cyber threat landscape. This malicious software is designed to exploit and damage computer systems, often without the user's knowledge. It was first advertised on various underground cybercrime forums, where it quickly gained attention for its capabilities. BunnyLoader can infiltrate systems through suspicious downloads, emails, or websites, and once inside, it can steal personal information, disrupt operations, or even hold data hostage for ransom. The malware underwent significant changes with the release of BunnyLoader 3.0. The most notable change was the transition from one file to a smaller base client, with features available as downloadable modules. This evolution made BunnyLoader more versatile and harder to detect, increasing its threat level. Security researchers at Zscalar discovered this new variant, highlighting its association with the burgeoning MaaS industry and its ability to pilfer and replace data stored in the clipboard. BunnyLoader has been used in several high-profile cyber-attacks, including a spearphishing campaign targeting a governmental entity in Guyana. In this instance, the attackers deployed a previously undocumented C++ backdoor named "DinodasRAT," which could exfiltrate files, manipulate Windows registry keys, execute CMD commands, and more. Additionally, BunnyLoader has been identified as a tool for stealing sensitive data and cryptocurrency, further emphasizing the need for robust cybersecurity measures against such threats.
What's your take? (Question 1 of 5)
d01c5597-f869-42a2-981a-2eb90aec9222 Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Malware
Loader
Maas
Payload
Encryption
Zscaler
Denial of Se...
Cybercrime
Windows
Antivirus
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Bunnyloader Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
Unit42
2 months ago
Inside the Rabbit Hole: BunnyLoader 3.0 Unveiled
CERT-EU
8 months ago
BunnyLoader, the newest Malware-as-a-Service | Zscaler
Securityaffairs
2 months ago
BunnyLoader 3.0 surfaces in the threat landscape - Security Affairs
Securityaffairs
8 months ago
BunnyLoader, a new Malware-as-a-Service advertised in cybercrime forums
CERT-EU
8 months ago
New BunnyLoader threat emerges as a feature-rich malware-as-a-service
InfoSecurity-magazine
8 months ago
BunnyLoader Malware Targets Browsers and Cryptocurrency
CERT-EU
8 months ago
New Malware-as-a-Service Gains Traction Among Cybercriminals
CERT-EU
8 months ago
BunnyLoader: New Malware-as-a-Service Threat Emerges in the Cybercrime Underground
CERT-EU
8 months ago
BunnyLoader, the newest Malware-as-a-Service - Cyber Security Review
CERT-EU
8 months ago
Novel BunnyLoader MaaS threat examined
CERT-EU
8 months ago
New BunnyLoader malware helps to steal credentials, crypto coins
Securityaffairs
2 months ago
Security Affairs newsletter Round 465 by Pierluigi Paganini
Securityaffairs
24 days ago
Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs
2 months ago
Security Affairs newsletter Round 466 by Pierluigi Paganini
Securityaffairs
3 days ago
Security Affairs newsletter Round 473 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs
a month ago
Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs
a month ago
Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs
2 months ago
Security Affairs newsletter Round 464 by Pierluigi Paganini
CERT-EU
8 months ago
Feet, Google, Apple, Predator, r77, Qualcomm, qakbot, Deepfakes, & Aaran Leyland – SWN #331
CERT-EU
8 months ago
Cyber Security Week in Review: October 6, 2023