Malpedia Library

Click here to download all references as Bib-File.•

2023-06-15 ⋅ Github (cocomelonc) ⋅ cocomelonc
Malware analysis report: Babuk ransomware
Babuk

2023-06-15 ⋅ Seqrite ⋅ Sathwik Ram Prakki
Double Action, Triple Infection, and a New RAT: SideCopy’s Persistent Targeting of Indian Defence
Action RAT

2023-06-15 ⋅ Symantec ⋅ Threat Hunter Team
Shuckworm: Inside Russia’s Relentless Cyber Campaign Against Ukraine
Pteranodon

2023-06-15 ⋅ Mandiant ⋅ Austin Larsen, John Palmisano, John Wolfram, Mathew Potaczek, Matthew McWhirt
Barracuda ESG Zero-Day Vulnerability (CVE-2023-2868) Exploited Globally by Aggressive and Skilled Actor, Suspected Links to China
SALTWATER SEASPY UNC4841

2023-06-15 ⋅ Cado Security ⋅ Cado Security
Tracking Diicot: an emerging Romanian threat actor

2023-06-14 ⋅ PICUS Security ⋅ Sıla Özeren
Picus Cyber Threat Intelligence Report May 2023: Top 10 MITRE ATT&CK Techniques
Earth Longzhi

2023-06-14 ⋅ VulnCheck ⋅ Jacob Baines
Fake Security Researcher GitHub Repositories Deliver Malicious Implant
TorLoader

2023-06-14 ⋅ CISA ⋅ ANSSI, Australian Cyber Security Centre (ACSC), Bundesamt für Sicherheit in der Informationstechnik (BSI), Canadian Centre for Cyber Security (CCCS), CERT NZ, FBI, MS-ISAC, NCSC UK, New Zealand National Cyber Security Centre (NZ NCSC)
Understanding Ransomware Threat Actors: Lockbit
LockBit

2023-06-13 ⋅ Trellix ⋅ Ernesto Fernández Provecho
Skuld: The Infostealer that Speaks Golang
Skuld

2023-06-13 ⋅ Medium BI.ZONE ⋅ Oleg Skulkin
Core Werewolf targets the defense industry and critical infrastructure
Awaken Likho

2023-06-13 ⋅ Outpost24 ⋅ Beatriz Pimenta Klein
ICS attack classifications: differentiating between cyberwarfare, cyberterrorism, and hacktivism
UAC-0118

2023-06-12 ⋅ Sophos ⋅ Karl Ackerman
Deep dive into the Pikabot cyber threat
Pikabot

2023-06-12 ⋅ Kaspersky Labs ⋅ Sergey Lozhkin
Sneaky DoubleFinger loads GreetingGhoul targeting your cryptocurrency
DoubleFinger GreetingGhoul

2023-06-12 ⋅ ⋅ NTT Security ⋅ Rintaro Koike
About PowerHarbor, a new malware used by SteelClover
PowerHarbor

2023-06-09 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 33. Syscalls - part 2. Simple C++ example.

2023-06-09 ⋅ ConnectWise ⋅ ConnectWise CRU
SmashJacker (ChromeLoader variant)
Choziosi

2023-06-08 ⋅ VMRay ⋅ Patrick Staubmann
Busy Bees - The Transformation of BumbleBee
BumbleBee Cobalt Strike Conti Meterpreter Sliver

2023-06-08 ⋅ Check Point Research ⋅ Checkpoint Research
Stealth Soldier Backdoor Used in Targeted Espionage Attacks in North Africa
Stealth Soldier

2023-06-07 ⋅ darksys0x ⋅ darksys0x
Analysis and Reversing of srvnet2.sys
LIONTAIL

2023-06-07 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 32. Syscalls - part 1. Simple C++ example.