Malpedia Library

Click here to download all references as Bib-File.•

2024-11-13 ⋅ TEHTRIS ⋅ TEHTRIS
Cracking Formbook malware: Blind deobfuscation and quick response techniques
Formbook

2024-11-13 ⋅ Bitdefender ⋅ Martin Zugec
ShrinkLocker (+Decryptor): From Friend to Foe, and Back Again

2024-11-12 ⋅ SecurityScorecard ⋅ Ryan Sherstobitoff
The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat

2024-11-12 ⋅ DataBreaches.net ⋅ Dissent
Amazon confirms employee data breach after vendor hack
Nam3L3ss

2024-11-08 ⋅ ⋅ Rostelecom-Solar ⋅ Solar 4RAYS
The Elusive GoblinRAT – The Story Behind the Most Secretive and Mysterious Linux Backdoor Found in Government Infrastructures

2024-11-08 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]baldinger-ag[.]ch
APT73

2024-11-07 ⋅ ESET Research ⋅ ESET Research
APT Activity Report: Abusing Cloud Services and VPN Platforms in the Pursuit of New Prey
FrostyNeighbor

2024-11-06 ⋅ Cloudsek ⋅ Cloudsek
Mozi Resurfaces as Androxgh0st Botnet: Unraveling The Latest Exploitation Wave
Mozi

2024-11-06 ⋅ YouTube ( Hexacon) ⋅ Clement Lecigne, Google Threat Analysis Group
Caught in the wild - Past, present and future

2024-11-06 ⋅ Kaspersky Labs ⋅ Kirill Korchemny
New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency

2024-11-05 ⋅ Hunt.io ⋅ Hunt.io
RunningRAT’s Next Move: From Remote Access to Crypto Mining for Profit
Running RAT

2024-11-04 ⋅ Securonix ⋅ Den Iyzvyk, Tim Peck
CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging
Chisel

2024-10-31 ⋅ Twitter (@MonThreat) ⋅ ThreatMon
Tweet about EvilByte claiming to have hacked MyFatoorah
Evilbyte

2024-10-31 ⋅ Sophos X-Ops ⋅ Ross McKerchar
Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats
Asnarök

2024-10-31 ⋅ Sophos X-Ops ⋅ Andrew Brandt, Ross McKerchar
Pacific Rim timeline: Information for defenders from a braid of interlocking attack campaigns
Asnarök Tstark

2024-10-31 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network

2024-10-31 ⋅ nikhilh-20 ⋅ Nikhil Hegde
Deobfuscating JavaScript Malware Using Abstract Syntax Trees
MintsLoader

2024-10-30 ⋅ Cyber Press ⋅ Anupriya
DarkRaaS Ransomware Group Allegedly Selling Login Access to Oil & Gas Company
DarkRaaS

2024-10-29 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]scopeset[.]de
APT73

2024-10-29 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]trinitesolutions[.]com
APT73