Malpedia Library

Click here to download all references as Bib-File.•

2021-09-13 ⋅ McAfee ⋅ Fernando Ruiz
Android malware distributed in Mexico uses Covid-19 to steal financial credentials

2021-09-09 ⋅ Recorded Future ⋅ Insikt Group
Dark Covenant: Connections Between the Russian State and Criminal Actors
BlackEnergy EternalPetya Gameover P2P Zeus

2021-09-07 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Analysis of recent attacks by the Lazarus APT organization on the blockchain finance and energy industries

2021-09-03 ⋅ FireEye ⋅ Adrian Sanchez Hernandez, Alex Pennino, Andrew Rector, Brendan McKeague, Govand Sinjari, Harris Ansari, John Wolfram, Joshua Goddard, Yash Gupta
PST, Want a Shell? ProxyShell Exploiting Microsoft Exchange Servers
CHINACHOPPER HTran

2021-09-03 ⋅ Sophos ⋅ Anand Ajjan, Andrew Ludgate, Gabor Szappanos, Peter Mackenzie, Sean Gallagher, Sergio Bestulic, Syed Zaidi
Conti affiliates use ProxyShell Exchange exploit in ransomware attacks
Cobalt Strike Conti

2021-09-01 ⋅ Sophos ⋅ Anand Ajjan, Andrew Brandt, Sean Gallagher, Yusuf Polat
Fake pirated software sites serve up malware droppers as a service
Raccoon

2021-08-31 ⋅ Yoroi ⋅ Luca Mella, Luigi Martire, Yoroi
Financial Institutions in the Sight of New JsOutProx Attack Waves
JSOutProx

2021-08-28 ⋅ The Hacker News ⋅ Ravie Lakshmanan
LockFile Ransomware Bypasses Protection Using Intermittent File Encryption
LockFile

2021-08-23 ⋅ AT&T ⋅ Fernando Dominguez
PRISM attacks fly under the radar
PRISM

2021-08-17 ⋅ Huntress Labs ⋅ Matthew Brennan
Snakes on a Domain: An Analysis of a Python Malware Loader

2021-07-07 ⋅ Chainanalysis ⋅ Chainalysis Team
Israeli Government Seizes Cryptocurrency Addresses Associated with Hamas Donation Campaigns

2021-07-07 ⋅ ESET Research ⋅ Fernando Tavella, Matías Porolli
Bandidos at large: A spying campaign in Latin America
Bandook

2021-07-06 ⋅ AT&T ⋅ Fernando Martinez
Lazarus campaign TTPs and evolution

2021-07-04 ⋅ Sophos ⋅ Anand Ajjan, Mark Loman, Sean Gallagher
Independence Day: REvil uses supply chain exploit to attack hundreds of businesses
REvil

2021-07-01 ⋅ AT&T Cybersecurity ⋅ Fernando Martinez, Ofer Caspi
REvil’s new Linux version
REvil REvil

2021-06-27 ⋅ Fortinet ⋅ Gayathri Thirugnanasambandam
Spear Phishing Campaign with New Techniques Aimed at Aviation Companies
AsyncRAT

2021-06-24 ⋅ Binance ⋅ Binance
Binance Helps Take Down Cybercriminal Ring Laundering $500M in Ransomware Attacks
Clop

2021-06-19 ⋅ CISA ⋅ US-CERT
Alert (AA21-200A): Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
APT40

2021-06-16 ⋅ ⋅ Microstep Online Research Response Center ⋅ Ring-1
Evilnum organizes recent attacks against European financial companies
EVILNUM

2021-06-14 ⋅ AlienVault ⋅ Fernando Martinez
Malware hosting domain Cyberium fanning out Mirai variants
Mirai