Malpedia Library

Click here to download all references as Bib-File.•

2021-10-19 ⋅ Proofpoint ⋅ Axel F, Brandon Murphy, Crista Giering, Georgi Mladenov, Matthew Mesa, Zydeca Cass
Whatta TA: TA505 Ramps Up Activity, Delivers New FlawedGrace Variant
FlawedGrace MirrorBlast

2021-09-27 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Gilbert Sison, Joelson Soares, Ryan Maglaque, Warren Sto.Tomas
Fake Installers Drop Malware and Open Doors for Opportunistic Attackers
RedLine Stealer Socelars Vidar

2021-09-20 ⋅ ⋅ Rostelecom-Solar ⋅ Rostelecom-Solar
How we searched for a connection between Mēris and Glupteba, and gained control over 45 thousand MikroTik devices
Glupteba

2021-09-15 ⋅ Palo Alto Networks Unit 42 ⋅ Anna Chung, Swetha Balla
Phishing Eager Travelers
Dridex

2021-09-01 ⋅ YouTube (Black Hat) ⋅ Aragorn Tseng, Charles Li
Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
Cobalt Strike PlugX Waterbear

2021-08-27 ⋅ ⋅ Seguranca Informatica ⋅ Pedro Tavares
Fraude personificando a marca Continente espalha-se através do WhatsApp: Não se deixe enganar!

2021-08-24 ⋅ KELA ⋅ KELA Cyber Intelligence Center
LockBit 2.0 Interview with Russian OSINT
LockBit

2021-08-19 ⋅ Talos ⋅ Asheer Malhotra, Vanja Svajcer, Vitor Ventura
Malicious Campaign Targets Latin America: The seller, The operator and a curious link
AsyncRAT NjRAT

2021-08-10 ⋅ FireEye ⋅ Israel Research Team, U.S. Threat Intel Team
UNC215: Spotlight on a Chinese Espionage Campaign in Israel
HyperBro HyperSSL MimiKatz

2021-08-09 ⋅ ESET Research ⋅ Zuzana Hromcová
IISpy: A complex server‑side backdoor with anti‑forensic features
IISpy JuicyPotato

2021-08-04 ⋅ FireEye ⋅ Doug Bienstock, Josh Madeley
Cloudy with a Chance of APTNovel Microsoft 365 Attacks in the Wild

2021-07-29 ⋅ Rasta Mouse ⋅ Rasta Mouse
NTLM Relaying via Cobalt Strike
Cobalt Strike

2021-07-20 ⋅ Trend Micro ⋅ Alfredo Oliveira, David Fiser
Tracking the Activities of TeamTNT: A Closer Look at a Cloud-Focused Malicious Actor Group
TeamTNT

2021-07-18 ⋅ Twitter (@billmarczak) ⋅ Bill Marczak
Twitter thread with a couple of interesting bits from AmnestyTech's new report on Pegasus
Chrysaor

2021-07-14 ⋅ ⋅ Guardia Civil ⋅ Guardia Civil
The Civil Guard dismantles an important network dedicated to committing scams through the Internet
Grandoreiro Mekotio

2021-07-12 ⋅ Proofpoint ⋅ Crista Giering, Joshua Miller, Threat Research Team
Operation SpoofedScholars: A Conversation with TA453

2021-07-07 ⋅ Trend Micro ⋅ Gloria Chen, Jaromír Hořejší, Joseph C Chen, Kenney Lu
BIOPASS RAT: New Malware Sniffs Victims via Live Streaming
BIOPASS Cobalt Strike Derusbi

2021-07-06 ⋅ Cybereason ⋅ Tom Fakterman
Cybereason vs. REvil Ransomware: The Kaseya Chronicles
REvil

2021-06-29 ⋅ Silverado Policy Accelerator ⋅ Anne Neuberger, Dmitri Alperovitch
Cyber Strategy in the Biden Era: A Conversation with Anne Neuberger

2021-06-17 ⋅ ⋅ nrk ⋅ Espen Kjendlie, Tormod Strand, Øyvind Bye Skille
For the first time, PST says that China (APT31) is behind a computer attack
APT31