Malpedia Library

Click here to download all references as Bib-File.•

2023-05-16 ⋅ CyberRaiju ⋅ Jai Minton
Remcos RAT - Malware Analysis Lab
Remcos

2023-05-15 ⋅ Trend Micro ⋅ Jaromír Hořejší, Joseph C Chen
Water Orthrus's New Campaigns Deliver Rootkit and Phishing Modules
CopperStealth CopperStealer Water Orthrus

2023-05-15 ⋅ Metabase Q ⋅ Gerardo Corona, Julio Vidal
Botnet Fenix: New botnet going after tax payers in Mexico and Chile
Fenix

2023-05-15 ⋅ CrowdStrike ⋅ CrowdStrike
Hypervisor Jackpotting, Part 3: Lack of Antivirus Support Opens the Door to Adversary Attacks
BlackCat SystemBC

2023-05-15 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
LokiLocker, a Ransomware Similar to BlackBit Being Distributed in Korea
LokiLocker

2023-05-15 ⋅ Symantec ⋅ Threat Hunter Team
Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors
Merdoor PlugX ShadowPad ZXShell Lancefly

2023-05-15 ⋅ embeeresearch ⋅ Embee_research
Quasar Rat Analysis - Identification of 64 Quasar Servers Using Shodan and Censys
Quasar RAT

2023-05-14 ⋅ unfinished.bike ⋅ Thomas Strömberg
Fun with the new bpfdoor (2023)
BPFDoor

2023-05-14 ⋅ Medium ⋅ Denshi Yūrei
Silent Echoes: The Hidden Dialogue among Malware Entities — Spotlight on AMOS InfoStealer
AMOS Aurora Stealer TitanStealer

2023-05-13 ⋅ Sekoia ⋅ Jeremy Scion, Livia Tibirna, Pierre Le Bourhis, Sekoia TDR
Mallox affiliate leverages PureCrypter in MS-SQL exploitation campaigns
PureCrypter TargetCompany

2023-05-13 ⋅ ⋅ Xitan Laboratory ⋅ ABC123
Article 62: Summary of Vietnam Hailianhua APT’s Email Phishing Techniques and Tactics against Mainland China

2023-05-12 ⋅ YouTube (BSides Prishtina) ⋅ Egxona Ferati, META
Automating Threat Detection and Response at Scale - Egxona Ferati

2023-05-12 ⋅ Cyfirma ⋅ cyfirma
Evolution of KILLNET from Hacktivism to Private Hackers Company and the Role of Sub-groups
Zarya

2023-05-12 ⋅ cyble ⋅ Cyble
BlackSuit Ransomware Strikes Windows and Linux Users
BlackSuit BlackSuit

2023-05-12 ⋅ Securonix ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
Ongoing MEME#4CHAN Attack/Phishing Campaign uses Meme-Filled Code to Drop XWorm Payloads
XWorm

2023-05-11 ⋅ Bleeping Computer ⋅ Bill Toulas
Stealthier version of Linux BPFDoor malware spotted in the wild
BPFDoor

2023-05-11 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 28: Dump lsass.exe. Simple C++ example.
Cobalt Strike APT3 Keylogger

2023-05-10 ⋅ Bitdefender ⋅ Martin Zugec
Deep Dive Into DownEx Espionage Operation in Central Asia
DownEx

2023-05-10 ⋅ Github (MythicAgents) ⋅ Cody Thomas
Github Repository for Nimplant
Nimplant

2023-05-10 ⋅ Github (MythicAgents) ⋅ Cody Thomas
Github Repository for Poseidon
Poseidon Poseidon