Malpedia Library

Click here to download all references as Bib-File.•

2024-11-04 ⋅ Medium (@DCSO_CyTec) ⋅ Denis Szadkowski, Johann Aydinbas, Maike Orlikowski, Paul van Ramesdonk
Unransomware: From Zero to Full Recovery in a Blink
Akira

2024-10-16 ⋅ nao_sec ⋅ nao_sec
IcePeony with the '996' work culture
IceCache IceEvent IcePeony

2024-09-03 ⋅ Twitter (@embee_research) ⋅ Embee_research
Advanced Cyberchef Techniques - Defeating Nanocore Obfuscation With Math and Flow Control
Nanocore RAT

2024-08-19 ⋅ Aquasec ⋅ Assaf Morag
PG_MEM: A Malware Hidden in the Postgres Processes
PG_MEM XMRIG

2024-08-04 ⋅ Twitter (@embee_research) ⋅ Embee_research
Decoding a Cobalt Strike Downloader Script With CyberChef
Cobalt Strike

2024-07-24 ⋅ Radware ⋅ Radware
Six-day, 14.7 Million RPS Web DDoS Attack Campaign Attributed to SN_BLACKMETA
Blackmeta

2024-07-22 ⋅ Censys ⋅ Censys, Embee_research
A Beginner’s Guide to Hunting Malicious Open Directories
Cobalt Strike Lumma Stealer Vidar

2024-07-01 ⋅ Speakerdeck (takahiro_haruyama) ⋅ Takahiro Haruyama
The Art of Malware C2 Scanning - How to Reverse and Emulate Protocol Obfuscated by Compiler
DOPLUGS Hodur

2024-06-10 ⋅ The Hacker News ⋅ Ravie Lakshmanan
More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack
More_eggs

2024-05-23 ⋅ Twitter (@embee_research) ⋅ Embee_research
Tracking APT SideWinder With DNS Records
SideWinder

2024-05-21 ⋅ Twitter (@embee_research) ⋅ Embee_research
Tweets on decoding a Latrodectus loader
Latrodectus

2024-05-15 ⋅ Twitter (@embee_research) ⋅ Embee_research
Revealing Spammer Infrastructure With Passive DNS - 226 Toll-Themed Domains Targeting Australia

2024-04-29 ⋅ Twitter (@sekoia_io) ⋅ sekoia
@sekoia_io's tweet about the (not so) new infostealer, named ACR Stealer
ACR Stealer

2024-04-11 ⋅ Twitter (@embee_research) ⋅ Embee_research
Tracking Malicious Infrastructure With DNS Records - Vultur Banking Trojan
Vultur

2024-04-04 ⋅ Twitter (@embee_research) ⋅ Embee_research
TLS Certificate For Threat Intelligence - Identifying MatanBuchus Domains Through Hardcoded Certificate Values
Matanbuchus

2024-04-01 ⋅ Twitter (@embee_research) ⋅ Embee_research
Passive DNS For Phishing Link Analysis - Identifying 36 Latrodectus Domains With Historical Records and 302 Redirects
Latrodectus

2024-03-30 ⋅ Twitter (@embee_research) ⋅ Embee_research
Uncovering APT Infrastructure with Passive DNS Pivoting

2024-03-27 ⋅ Twitter (@embee_research) ⋅ Embee_research
Uncovering Malicious Infrastructure with DNS Pivoting
LokiBot XWorm

2024-03-25 ⋅ embeeresearch ⋅ Embee_research
Latrodectus Deobfuscation - Removal of Junk Comments and Self-Referencing Code
Latrodectus

2024-03-19 ⋅ Medium (@DCSO_CyTec) ⋅ DCSO CyTec
How Rogue ISPs Tamper With Geofeeds