NetDefend IPS IPS Advisories NetDefend Anti-Virus Anti-Virus Advisories NetDefend Web Content Filtering NetDefend IP Reputation NetDefend Update Center IPS History Mar 20, 2025 Mar 13, 2025 Mar 06, 2025 Feb 27, 2025 Feb 20, 2025 Anti-Virus History Feb 12, 2022 Jan 06, 2022 Oct 23, 2021 Aug 29, 2021 Aug 23, 2021

Home > NetDefend Live > NetDefend IPS Service NetDefend IPS Service Print Advisory ID 48907 Name MALWARE.ASTAROTH.GUILDMA.INFECTION.B IPS Signature Advanced IPS Signature IPS Group IPS / MALWARE / GENERAL Issued Dec 19, 2024 Description The Astaroth malware, also known as Guildma, primarily targets Brazilian organizations through tailored phishing emails that often reference local institutions and use familiar payment methods like Boleto. The infection begins when users open malicious attachments, typically disguised as ZIP files containing executable scripts, which then download the Astaroth Trojan and establish command-and-control connections. Once installed, Astaroth exfiltrates sensitive data, including financial information and stored passwords, leveraging social engineering tactics to evade detection by traditional security measures.

Enter your details in the box below to receive an email each time we post a new issue of our newsletter. Select oneAfghanistanAlbaniaAlgeriaAmerican SamoaAndorraAngolaAnguillaAntarcticaAntigua and BarbudaArgentinaArmeniaArubaAustraliaAustriaAzerbaijanBahamasBahrainBangladeshBarbadosBelarusBelgiumBelizeBeninBermudaBhutanBoliviaBosnia and HerzegovinaBotswanaBouvet IslandBrazilBritish Indian Ocean TerritoryBrunei DarussalamBulgariaBurkina FasoBurundiCambodiaCameroonCanadaCape VerdeCayman IslandsCentral African RepublicChadChileChinaChristmas IslandCocos (Keeling) IslandsColombiaComorosCongoCongo, The Democratic Republic of theCook IslandsCosta RicaCote d'IvoireCroatiaCubaCyprusCzech RepublicDenmarkDjiboutiDominicaDominican RepublicEcuadorEgyptEl SalvadorEquatorial GuineaEritreaEstoniaEthiopiaFalkland Islands (Malvinas)Faroe IslandsFijiFinlandFranceFrench GuianaFrench PolynesiaFrench Southern TerritoriesGabonGambiaGeorgia, Republic ofGermanyGhanaGibraltarGreeceGreenlandGrenadaGuadeloupeGuamGuatemalaGuineaGuinea-BissauGuyanaHaitiHeard Island and McDonald IslandsHondurasHong KongHungaryIcelandIndiaIndonesiaIran (Islamic Republic of)IraqIrelandIsraelItalyJamaicaJapanJordanKazakhstanKenyaKiribatiKorea, Democratic People's Republic ofKorea, Republic ofKuwaitKyrgyzstanLao People’s Democratic RepublicLatviaLebanonLesothoLiberiaLibyan Arab Jamahiriya (Libya)LiechtensteinLithuaniaLuxembourgMacauMacedonia, The Former Yugoslav Republic ofMadagascarMalawiMalaysiaMaldivesMaliMaltaMarshall IslandsMartiniqueMauritaniaMauritiusMayotteMexicoMicronesia (Federated States of)Moldova, Republic ofMonacoMongoliaMontserratMoroccoMozambiqueMyanmarNamibiaNauruNepalNetherlandsNetherlands AntillesNew CaledoniaNew ZealandNicaraguaNigerNigeriaNiueNorfolk IslandNorthern Mariana IslandsNorwayOmanPakistanPalauPalestinian Territory,OccupiedPanamaPapua New GuineaParaguayPeruPhilippinesPitcairnPolandPortugalPuerto RicoQatarReunionRomaniaRussiaRwandaSaint HelenaSaint Kitts and NevisSaint LuciaSaint Pierre and MiquelonSaint Vincent and the GrenadinesSamoaSan MarinoSao Tome and PrincipeSaudi ArabiaSenegalSerbia and MontenegroSeychellesSierra LeoneSingaporeSlovakiaSloveniaSolomon IslandsSomaliaSouth AfricaSouth Georgia and the South Sandwich IslandsSpainSri LankaSudanSurinameSvalbard and Jan Mayen IslandsSwazilandSwedenSwitzerlandSyrian Arab Republic (Syria)TaiwanTajikistanTanzania, United Republic ofThailandTimor-LesteTogoTokelauTongaTrinidad and TobagoTunisiaTurkeyTurkmenistanTurks and Caicos IslandsTuvaluUgandaUkraineUnited Arab EmiratesUnited KingdomUnited States Minor Outlying IslandsUnited States of AmericaUruguayUzbekistanVanuatuVatican CityVenezuelaViet NamVirgin Islands, BritishVirgin Islands, U.S.Wallis and Futuna IslandsWestern SaharaYemenYugoslaviaZambiaZimbabwe Click here to unsubscribe Mar 29, 2025