Malpedia Library

Click here to download all references as Bib-File.•

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048G): AppleJeus: Ants2Whale
AppleJeus AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048D): AppleJeus: Kupay Wallet
AppleJeus AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048B): AppleJeus: JMT Trading
AppleJeus AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048A): AppleJeus: Celas Trade Pro
AppleJeus AppleJeus

2021-02-11 ⋅ US-CERT ⋅ CISA, FBI
Alert (AA21-042A): Compromise of U.S. Water Treatment Facility

2021-01-14 ⋅ PTSecurity ⋅ PT ESC Threat Intelligence
Higaisa or Winnti? APT41 backdoors, old and new
Cobalt Strike CROSSWALK FunnySwitch PlugX ShadowPad

2021-01-14 ⋅ PTSecurity ⋅ PTSecurity
Higaisa or Winnti? APT41 backdoors, old and new
FunnySwitch

2021-01-06 ⋅ CISA ⋅ US-CERT
Supply Chain Compromise
SUNBURST

2021-01-05 ⋅ CISA, FBI, NSA, ODNI
Joint Statement by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the National Security Agency (NSA)
SUNBURST

2020-12-15 ⋅ ⋅ KISA ⋅ KrCERT
Operation MUZABI
Appleseed

2020-12-15 ⋅ ⋅ KISA ⋅ KISA
Operation MUZABI
Kimsuky

2020-12-13 ⋅ CISA ⋅ CISA
Active Exploitation of SolarWinds Software
SUNBURST

2020-12-10 ⋅ US-CERT ⋅ FBI, MS-ISAC, US-CERT
Alert (AA20-345A): Cyber Actors Target K-12 Distance Learning Education to Cause Disruptions and Steal Data
PerlBot Shlayer Agent Tesla Cerber Dridex Ghost RAT Kovter Maze MedusaLocker Nanocore RAT Nefilim REvil Ryuk Zeus

2020-12-04 ⋅ Stratosphere Laboratory ⋅ Lisandro Ubiedo, María José Erquiaga, Sebastian García, Thomas O'Hara, Veronica Valeros
Current State of IPv6 Security in IoT

2020-11-27 ⋅ Trend Micro ⋅ Luis Magisa, Steven Du
New MacOS Backdoor Connected to OceanLotus Surfaces
OceanLotus APT32

2020-11-13 ⋅ Youtube (The Standoff) ⋅ Alexey Zakharov, Positive Technologies
FF_202_Eng - From old Higaisa samples to new Winnti backdoors: The story of one research
CROSSWALK Unidentified 076 (Higaisa LNK to Shellcode)

2020-11-02 ⋅ FireEye ⋅ Adrian Pisarczyk, Antonio Monaca, Daniel Caban, Daniel Susin, Justin Moore, Luis Rocha, Sara Rincon, Wojciech Ledzion
Live off the Land? How About Bringing Your Own Island? An Overview of UNC1945
SLAPSTICK STEELCORGI

2020-10-28 ⋅ CISA ⋅ CISA, FBI, HHS
AA20-302A: Ransomware Activity Targeting the Healthcare and Public Health Sector
AnchorDNS Anchor BazarBackdoor Ryuk

2020-10-27 ⋅ Avast ⋅ Lisandro Ubiedo
Data exfiltration via IPv6

2020-10-23 ⋅ AP News ⋅ Frank Bajak
Report: Ransomware disables Georgia county election database
DoppelPaymer