InnfiRAT remote access Trojan is written in .net. It primarily steals his victim's information such as browser cookies, crypto currency wallet details, session data.
TFlower Ransomware is being installed in a corporate network through exposed Remote Desktop services that are being hacked by attackers.
FrameworkPOS, aka TRINITY, is POS malware associated with a threat actor FIN6. It is designed to capture physical point-of-sales systems in order to gain Track1 and Track2 data, which includes credit card account number, expiration date, and more.
Emotet, one of the most advanced and dangerous botnets in the world in circulation for years, returns later a four-month break through a new malspam campaign, aimed at organizations and users. Starting from 16 September 2019 the botnet has completely resurfaced and resumed spamming operations.