Malpedia Library

Click here to download all references as Bib-File.•

2026-03-10 ⋅ Lumen ⋅ Black Lotus Labs
Silence of the hops: The KadNap botnet
KadNap

2026-03-10 ⋅ ESET Research ⋅ ESET Research
Sednit reloaded: Back in the trenches
BEARDSHELL GRUNT SLIMAGENT X-Agent XTunnel

2026-03-09 ⋅ Abstract Security ⋅ Abstract Security Threat Research Organization (ASTRO)
Contagious Interview: Evolution of VS Code and Cursor Tasks Infection Chains Part 2
GolangGhost PylangGhost GolangGhost

2026-03-06 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
AI as tradecraft: How threat actors operationalize AI
OtterCookie

2026-03-05 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
North Korean APT Malware Analysis: DEV#POPPER RAT and OmniStealer (Everyday I'm Shufflin')
JADESNOW

2026-03-05 ⋅ Github (cocomelonc) ⋅ cocomelonc
Malware and cryptography 44 - encrypt/decrypt payload via Discrete Fourier Transform. Simple C example.

2026-03-04 ⋅ EG-FinCirt ⋅ EG-FinCirt Malware Analysis team
Remcos RAT Operations: How Attackers Gain and Maintain Control
Remcos

2026-03-03 ⋅ Google ⋅ Google Threat Intelligence Group
Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit

2026-03-03 ⋅ Microsoft ⋅ Microsoft
Signed malware impersonating workplace apps deploys RMM backdoors
TrustConnect RAT

2026-03-02 ⋅ Zscaler ⋅ Sudeep Singh
Dust Specter APT Targets Government Officials in Iraq

2026-03-02 ⋅ Microsoft ⋅ Microsoft Defender Security Research Team
OAuth redirection abuse enables phishing and malware delivery

2026-03-02 ⋅ ClearSky ⋅ ClearSky
Exposing a Russian Campaign Targeting Ukraine Using New Malware Duo: BadPaw and MeowMeow
BadPaw

2026-03-02 ⋅ abuse.ch ⋅ abuse.ch
MalwareBazaar | SHA256 8011996692048501c1eccb66a2771546ade084806f48994104d199e28af82a4c (ArcaneStealer)
ArcaneStealer

2026-02-28 ⋅ Github (cocomelonc) ⋅ cocomelonc
MacOS malware persistence 4: AutoLaunched Applications, Background Task Management (BTM). Simple C example

2026-02-27 ⋅ Intrinsec ⋅ Gilbert Kallenborn
Analysis of AuraStealer, an emerging infostealer
Aura Stealer

2026-02-26 ⋅ Lab52 ⋅ Lab52
PlugX Meeting Invitation via MSBuild and GDATA
PlugX

2026-02-26 ⋅ ⋅ Gdata ⋅ G DATA Security Lab
Free games with unexpected costs
HijackLoader

2026-02-26 ⋅ kmsec ⋅ Kieran Miyamoto
Novel DPRK stager using Pastebin and text steganography

2026-02-25 ⋅ Hive Pro ⋅ Hive Pro
SANDWORM_MODE: npm Supply Chain Attack Targeting AI Development Tools

2026-02-25 ⋅ FortiGuard Labs ⋅ Ariel Davidpur
Unmasking Agent Tesla: A Deep Dive into a Multi-Stage Campaign
Agent Tesla