Mango

Malware updated 20 days ago (2024-08-22T19:17:43.047Z)
Download STIX
Preview STIX
"Mango" is a malware discovered to be actively manipulated by its operators to evade traditional detection mechanisms. This harmful program, designed to exploit and damage computers or devices, was found in an executable named BOOSTWRITE uploaded to VirusTotal on October 3. The executable uses a code signing certificate issued by MANGO ENTERPRISE LIMITED, indicating the malware's sophisticated nature. Relevant executable timestamps reveal that the signed BOOSTWRITE’s PE compilation time was on May 20, 2019, and the "mango ENTERPRISE LIMITED" certificate validity window ran from May 22, 2019, through May 21, 2020. This information suggests the ongoing evolution of this malware. In addition to the malware issue, Mango Markets, a leading DeFi protocol on Solana, has been facing legal troubles. The platform has been struggling since the malware exploit and is now considering a settlement with the U.S. Securities and Exchange Commission (SEC) over allegations of violating securities laws. Notably, William Frentzen, a partner and trial attorney experienced in dealing with hackers, has previously assisted in recovering funds stolen in a $110mn fraud at crypto exchange Mango Markets. Furthermore, the malware "Mango" is linked to Mikhail Tsarev, who operates under various monikers including Mango, Alexander Grachev, Super Misha, Ivanov Mixail, Misha Krutysha, and Nikita Andreevich Tsarev. His connection to the malware adds another layer of complexity to the situation, highlighting the intricate web of cybercrime and its significant impact on digital platforms such as Mango Markets.
Description last updated: 2024-08-22T19:16:03.509Z
What's your take? (Question 1 of 1)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Chrome
Malware
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the Mango Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
BankInfoSecurity
20 days ago
Cryptohack Roundup: Investors Sue Binance
CERT-EU
9 months ago
Specialist lawyers lead cyber counterattack
MITRE
2 years ago
Mahalo FIN7: Responding to the Criminal Operators’ New Tools and Techniques | Mandiant
CERT-EU
a year ago
US and UK sanction 11 TrickBot and Conti cybercrime gang members
CERT-EU
a year ago
Iranian Nation-State Actor OilRig Targets Israeli Organizations
BankInfoSecurity
5 months ago
Jury Dishes Out Guilty Verdict in Mango Markets Fraud Case
CERT-EU
a year ago
How this Israeli Backdoor written in C#/.NET can be used to hack into any company
CERT-EU
a year ago
OilRig: Never-seen C#/.NET Backdoor to Attack Wide Range of Industries
CERT-EU
a year ago
OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes