Malpedia Library

Click here to download all references as Bib-File.•

2025-01-23 ⋅ Lumen ⋅ Black Lotus Labs
The J-Magic Show: Magic Packets and Where to find them
J-Magic SEASPY

2025-01-23 ⋅ ThreatMon ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
Helldown Ransomware Malware Analysis Report
HellDown

2025-01-22 ⋅ ESET Research ⋅ Facundo Muñoz
PlushDaemon compromises supply chain of Korean VPN service
SlowStepper PlushDaemon

2025-01-21 ⋅ Financial Security Institute ⋅ JeongGak Lyu
Follow the Clues - Everyday is lazarus.day

2025-01-21 ⋅ KrCert ⋅ Dongwook Kim, Seulgi Lee
Analysis of Attack Strategies Targeting Centralized Management Solutions

2025-01-21 ⋅ Knownsec ⋅ Knownsec 404 Team
Love and hate under war: The GamaCopy organization, which imitates the Russian Gamaredon, uses military — related bait to launch attacks on Russia
GamaCopy

2025-01-21 ⋅ Seqrite ⋅ Subhajeet Singha
Silent Lynx APT Targets Various Entities Across Kyrgyzstan & Neighbouring Nations
Unidentified PS 005 (Telegram Bot)

2025-01-20 ⋅ ⋅ JPCERT/CC ⋅ Hayato Sasaki
APT actor classification “addiction” - Practical issues of attribution seen in Lazarus subgroup classification

2025-01-20 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Jonathan Mccay, Joshua Platt
Qbot is Back.Connect
ReedBed UNC4393

2025-01-19 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick 44: Stealing data via legit GitHub API. Simple C example.
OceanLotus BitRAT RecordBreaker

2025-01-17 ⋅ Twitter (@Unit42_Intel) ⋅ Unit 42
Tweet about affiliates of DarkScorpius using Social Engineering via MS Teams
UNC4393

2025-01-16 ⋅ Youtube (Eric Parker) ⋅ Eric Parker
The Virus That Draws "I Am Sorry !!!!!" Over All JPEG Files
Grenam

2025-01-16 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 39 - encrypt/decrypt payload via DES-like cipher. Simple C example.

2025-01-15 ⋅ ⋅ CTFIOT ⋅ CTFIOT
Article 113: One of the Russian-Ukrainian cyberwars, a review of the first major blackout in Ukraine caused by the Sandworm APT organization
KillDisk

2025-01-15 ⋅ ⋅ Habr ⋅ F.A.C.C.T. Information security
F.A.C.C.T. found new attacks of pro-Ukrainian cyber spies Sticky Werewolf
Ozone RAT

2025-01-14 ⋅ Infoblox ⋅ David Brunsdon
One Mikro Typo: How a simple DNS misconfiguration enables malware delivery by a Russian botnet

2025-01-14 ⋅ Vertex ⋅ Savage
More Than Malware Families: Retooling Our Approach to Tracking Software

2025-01-14 ⋅ The Record ⋅ Daryna Antoniuk
Russia's largest platform for state procurement hit by cyberattack from pro-Ukraine group

2025-01-14 ⋅ RedSense ⋅ Landon Rice, Marley Smith, Yelisey Bohuslavskiy
From Royal to BlackSuit
BlackSuit Royal Ransom Royal Ransom BlackSuit Royal Ransom

2025-01-14 ⋅ Department of Justice ⋅ Office of Public Affairs
Justice Department and FBI Conduct International Operation to Delete Malware Used by China-Backed Hackers
PlugX