Malpedia Library

2021-07-07 ⋅ Trend Micro ⋅ Gloria Chen, Jaromír Hořejší, Joseph C Chen, Kenney Lu
BIOPASS RAT: New Malware Sniffs Victims via Live Streaming
BIOPASS Cobalt Strike Derusbi

2021-07-06 ⋅ Cybereason ⋅ Tom Fakterman
Cybereason vs. REvil Ransomware: The Kaseya Chronicles
REvil

2021-06-29 ⋅ Silverado Policy Accelerator ⋅ Anne Neuberger, Dmitri Alperovitch
Cyber Strategy in the Biden Era: A Conversation with Anne Neuberger

2021-06-17 ⋅ ⋅ nrk ⋅ Espen Kjendlie, Tormod Strand, Øyvind Bye Skille
For the first time, PST says that China (APT31) is behind a computer attack
APT31

2021-06-08 ⋅ ilbaroni
LOKIBOT - A commodity malware
Loki Password Stealer (PWS)

2021-06-08 ⋅ The Record ⋅ Catalin Cimpanu
Microsoft patches six Windows zero-days, including a commercial exploit

2021-06-01 ⋅ SANS ⋅ Jake Williams, Kevin Haley
A Contrarian View on SolarWinds
Cobalt Strike Raindrop SUNBURST TEARDROP

2021-05-22 ⋅ Youtube (ACPEnw) ⋅ YouTube (ACPEnw)
Lessons Learned from a Cyber Attack System Admin Perspective
Ryuk

2021-05-11 ⋅ KrebsOnSecurity ⋅ Brian Krebs
A Closer Look at the DarkSide Ransomware Gang
DarkSide

2021-05-08 ⋅ Group-IB ⋅ Sergei Kokurin
When Karma Comes Back: The rise and fall of illicit cardshop breached twice in two years

2021-05-07 ⋅ TEAMT5 ⋅ Aragorn Tseng, Charles Li
Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
Cobalt Strike PlugX Waterbear

2021-05-06 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Cris Tomboc, Jayson Chong, Nikki Madayag, Sean Torre
Proxylogon: A Coinminer, a Ransomware, and a Botnet Join the Party
BlackKingdom Ransomware CHINACHOPPER Lemon Duck Prometei

2021-05-05 ⋅ ESET Research ⋅ ESET Research
Ousaban: Private photo collection hidden in a CABinet
Ousaban

2021-04-29 ⋅ The Institute for Security and Technology ⋅ The Institute for Security and Technology
Combating Ransomware A Comprehensive Framework for Action: Key Recommendations from the Ransomware Task Force
Conti EternalPetya

2021-04-27 ⋅ CrowdStrike ⋅ Eben Kaplan, Josh Dalman, Kamil Janton
Ransomware Preparedness: A Call to Action
Dharma GlobeImposter Maze Phobos CIRCUS SPIDER TRAVELING SPIDER

2021-04-27 ⋅ Trend Micro ⋅ Janus Agcaoili
Hello Ransomware Uses Updated China Chopper Web Shell, SharePoint Vulnerability
CHINACHOPPER Cobalt Strike

2021-04-21 ⋅ splunk ⋅ Bill Wright, Dave Herrald, James Brodsky, John Stoner, Kelly Huang, Marcus LaFerrerra, Michael Natkin, Mick Baccio, Ryan Kovar, Shannon Davis, Tamara Chacon
Monitoring Pulse Connect Secure With Splunk (CISA Emergency Directive 21-03)

2021-04-19 ⋅ nviso ⋅ Jeroen Beckers
How to analyze mobile malware: a Cabassous/FluBot Case study
FluBot

2021-04-15 ⋅ Avast Decoded ⋅ Romana Tesařová
HackBoss: A cryptocurrency-stealing malware distributed through Telegram

2021-04-12 ⋅ DataBreaches.net ⋅ Dissent
A chat with DarkSide
DarkSide