Brand Tinexta Defence
Brand Tinexta Defence

EN

/

EN

Brand Tinexta Defence

EN

/

EN

Malware Lab

Our Malware Lab analyzes new threats daily through threat hunting networks, with the aim of understanding the technological evolution of cyberattacks in real-time - such as infection vectors, evasion techniques, persistence, and propagation. These activities allow us to consolidate strategic knowledge to improve the effectiveness and timeliness of incident response and actively contribute to the dissemination of information on emerging threats within the expert’s community, as well as among clients, partners, and institutions.

Malware Lab analysts are constantly engaged in researching and experimenting with innovative tools and methodologies for advanced malware analysis, aiming to increase accuracy and coverage against emerging techniques used by threat actors. The team has developed an automated process for the daily extraction of Indicators of Compromise (IOCs) from malware samples, feeding our proprietary Knowledge Base. Moreover, it is also actively involved in developing tools dedicated to malware analysis and supporting incident management and response.

Threat Analysis

The Malware Lab is a Research Center specialized in studying the main techniques adopted by malware, with a focus on evasion, propagation, persistence, and infection.

We continuously analyze the most relevant malware campaigns, characterizing their ‘modus operandi’, the technologies employed, and profiling the threat actors active on the international landscape.

To support these activities, the Malware Lab relies on a dedicated honeynet designed to analyze new malware campaigns targeting the national perimeter.

Activities

  • Malware analysis and reporting on active campaigns
  • Support for Incident Handling
  • Threat Intelligence & Hunting
  • Development of native Tinexta Defence tools for malware analysis
  • Reports on emerging techniques and tactics
  • Offensive security

Tools

  • Static and dynamic analysis technologies
  • Natively developed tools
  • Threat hunting tools
  • Threat intelligence tools
  • Proprietary honeynet

Our reports

Date:
Last 3 months Last year All

Open source release: NetFlowMeter

Download

CVE-2025-56383: When a CVE gets it wrong

Download

Chinese Adware in the Microsoft Store

Download

MassLogger: analysis of the banking keylogger, infection vectors and defenses

Download

JetBrains Vulnerabilities (May 2025): analysis, developer risks and patch management

Download

DivulgeStealer

Download

Open source vulnerability hunting: iTop

Download

Malicious CAPTCHA: how attackers weaponize CAPTCHA challenges and how to defend

Download

CVE-2024-39425

Download

HijackLoader distributing Vidar: dropper mechanisms and indicators of compromise

Download

CVE-2024-22830: technical analysis of the exploit and urgent mitigation actions

Download

CVE-2023-36025: technical details, impact and recommended patches

Download

Mirai: evolution of the IoT botnet, IOCs and mitigation measures for critical infrastructures

Download

LummaC2: command-and-control analysis, TTPs and network defense recommendations

Download

Agent Tesla: understanding the info-stealer and blocking credential theft campaigns

Download

Chaos Ransomware: Mad Cat variant

Download

Google Malvertising

Download

xWorm - New version

Download

GuLoader deploys Remcos (part 2)

Download

GuLoader deploys Remcos (part 1)

Download

Multi-extortion Ransomware and encryption-less attacks

Download

URL Obfuscation

Download

Common EDR attack techniques

Download

Mimic Ransomware

Download

DJVU/STOP Ransomware deploys Vidar Stealer

Download

Stealc: data-stealer analysis, IOCs and enterprise detection strategies

Download

Weaponised PDF: technical analysis, Equation Editor exploit and practical mitigations

Download

Credential brute forcing leads to Linux malware

Download

OneNote as a Malware vector

Download

Subscribe to the Cyber Studios mailing list

Subscribe to our Cyber Studios mailing list to receive an email every time we publish a new Malware Lab report.

Corrado Aaron Visaggio - CSO

Corrado Aaron Visaggio

Group Chief Scientist Officer & Malware Lab Director

a.visaggio@defencetech.it

Corrado Aaron Visaggio is professor of Computer Security at the Department of Engineering at University of Sannio. He authored more than one hundred papers on International Conference proceedings and journals of Security Information. He leads the malware lab and the Research Department at Defence Tech and the security lab at University of Sannio. His main fields of research are: malware analysis, artificial intelligence applied to malware detection, and threat intelligence. He serves in Editorial Boards of several Infosec Journals and in the Program Committee of different International Conferences. He is in the Management Board of the CINI-National Cybersecurity Lab.

Malware Analysis Report

The Malware Reports can be viewed and downloaded in PDF format from the link below.

Degree in Business Administration from the University of Naples 'Federico II' with an MBA in Business Management achieved with high merit in 2008 by winning a scholarship provided by Invitalia S.p.A. from which she was selected in the first months of attendance as the best MBA profile.

After a brief experience in Invitalia S.p.A., he immediately held increasingly important roles in the management of Administration, Finance and Control of companies operating in the defence sector, theInformation Technology, of Cyber and National Security. In addition, she was Treasury Manager in companies operating in theEnergy.

He obtained an Executive Master in Finance (EMF) at SDA Bocconi in 2020, with a specialisation in Corporate Finance & Control and, in 2022, a further specialisation track in Asset, Wealth Management also at SDA Bocconi.

For over five years it has been the Chief Financial Officer of the Defence Tech Group, whose listing process he followed on the Euronext Growth Milan segment of Borsa Italiana.

From 2017 to 2024, she was a member of the boards of directors of all the legal entity of the Defence Tech Group with delegated powers over their financial management and from October 2021 to October 2024 was a Board Member of the Holding Company.

It is currently also Investor Relations Manager of the listed Defence Tech and follows all ESG issues of the Group.

In July 2021, she was recognised by Federmanager as one of the best talents under 44 at national level, receiving an important award as Young Manager 2020.