Malpedia Library

Click here to download all references as Bib-File.•

2025-08-28 ⋅ Defentive ⋅ Defentive Threat Research
The Phantom Threat: Inside UNC5518’s Invisible Empire of MetaStealer Operations
MetaStealer

2025-08-27 ⋅ Anthropic ⋅ Anthropic
Anthropic - Threat Intelligence Report: August 2025
BeaverTail OtterCookie GolangGhost InvisibleFerret GolangGhost

2025-08-27 ⋅ Defentive ⋅ Defentive Threat Research
Anatomy of a Real Phishing Attack: How Defentive Detected and Stopped It in Action

2025-08-26 ⋅ Sophos ⋅ Sophos Counter Threat Unit Research Team
Velociraptor incident response tool abused for remote access

2025-08-25 ⋅ Google ⋅ Google Threat Intelligence Group
Deception in Depth: PRC-Nexus Espionage Campaign Hijacks Web Traffic to Target Diplomats
STATICPLUGIN

2025-08-21 ⋅ GBHackers on Security ⋅ Aman Mishra
Threat Actors Weaponize PDF Editor Trojan to Convert Devices into Proxies
TamperedChef

2025-08-21 ⋅ Trellix ⋅ Sagar Bade
The Silent, Fileless Threat of VShell
Vshell

2025-08-21 ⋅ CrowdStrike ⋅ Counter Adversary Operations
MURKY PANDA: A Trusted-Relationship Threat in the Cloud

2025-08-19 ⋅ IBM X-Force ⋅ Raymond Joseph Alfonso
IBM X-Force Threat Analysis: QuirkyLoader - A new malware loader delivering infostealers and RATs
QuirkyLoader

2025-08-18 ⋅ Medium RaghavtiResearch ⋅ BeGoodToAll
Qilin Ransomware-as-a-Service: Threat Analysis and Strategic Outlook
Qilin AgendaCrypt

2025-08-05 ⋅ Defentive ⋅ Defentive Threat Research
Lost in Translation: Threat Actors Use SEO Poisoning and Fake DeepL Sites to Distribute Gh0st RAT
Ghost RAT

2025-08-01 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Hunting with 20 Urlscan.io Search Queries

2025-07-31 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats
ApolloShadow

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence Through NRD's ( New Registered Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via TLD's ( Top Level Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via GTLD's ( Generic Top Level Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence visa ccTLD ( country code top-level domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence ( Compromised domain list ) via ZoneFiles

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via Newly Registered Domains

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence vis Domain Monitoring ( ccTLD , gTLD , TLD , Malware Zones )