Malpedia Library

Click here to download all references as Bib-File.•

2021-05-07 ⋅ TEAMT5 ⋅ Aragorn Tseng, Charles Li
Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
Cobalt Strike PlugX Waterbear

2021-05-06 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Cris Tomboc, Jayson Chong, Nikki Madayag, Sean Torre
Proxylogon: A Coinminer, a Ransomware, and a Botnet Join the Party
BlackKingdom Ransomware CHINACHOPPER Lemon Duck Prometei

2021-05-05 ⋅ ESET Research ⋅ ESET Research
Ousaban: Private photo collection hidden in a CABinet
Ousaban

2021-04-29 ⋅ The Institute for Security and Technology ⋅ The Institute for Security and Technology
Combating Ransomware A Comprehensive Framework for Action: Key Recommendations from the Ransomware Task Force
Conti EternalPetya

2021-04-27 ⋅ CrowdStrike ⋅ Eben Kaplan, Josh Dalman, Kamil Janton
Ransomware Preparedness: A Call to Action
Dharma GlobeImposter Maze Phobos CIRCUS SPIDER TRAVELING SPIDER

2021-04-27 ⋅ Trend Micro ⋅ Janus Agcaoili
Hello Ransomware Uses Updated China Chopper Web Shell, SharePoint Vulnerability
CHINACHOPPER Cobalt Strike

2021-04-21 ⋅ splunk ⋅ Bill Wright, Dave Herrald, James Brodsky, John Stoner, Kelly Huang, Marcus LaFerrerra, Michael Natkin, Mick Baccio, Ryan Kovar, Shannon Davis, Tamara Chacon
Monitoring Pulse Connect Secure With Splunk (CISA Emergency Directive 21-03)

2021-04-19 ⋅ nviso ⋅ Jeroen Beckers
How to analyze mobile malware: a Cabassous/FluBot Case study
FluBot

2021-04-15 ⋅ Avast Decoded ⋅ Romana Tesařová
HackBoss: A cryptocurrency-stealing malware distributed through Telegram

2021-04-12 ⋅ DataBreaches.net ⋅ Dissent
A chat with DarkSide
DarkSide

2021-04-12 ⋅ ⋅ Knownsec ⋅ Knownsec
APT SideWinder's latest attack on a certain region in South Asia

2021-04-06 ⋅ Malwarebytes ⋅ Hossein Jazi
Aurora campaign: Attacking Azerbaijan using multiple RATs

2021-04-05 ⋅ Kaspersky ⋅ Ivan Kwiatkowski, Mark Lechtik, Pierre Delcher
The leap of a Cycldek-related threat actor

2021-03-26 ⋅ MIT Technology Review ⋅ Patrick Howell O'Neill
Google’s top security teams unilaterally shut down a counterterrorism operation

2021-03-21 ⋅ Twitter (@CyberRaiju) ⋅ Jai Minton
Twitter Thread with analysis of .NET China Chopper
CHINACHOPPER

2021-03-15 ⋅ Trustwave ⋅ Joshua Deacon
HAFNIUM, China Chopper and ASP.NET Runtime
CHINACHOPPER

2021-03-15 ⋅ Council on Foreign Relations ⋅ Omree Wechsler
The Iran-Russia Cyber Agreement and U.S. Strategy in the Middle East

2021-03-08 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White
Analyzing Attacks Against Microsoft Exchange Server With China Chopper Webshells
CHINACHOPPER

2021-02-23 ⋅ Medium (Katie’s Five Cents) ⋅ Katie Nickels
A Cyber Threat Intelligence Self-Study Plan: Part 1

2021-02-18 ⋅ Bitdefender ⋅ Cristina Vatamanu, Gheorghe Adrian Schipor, Rickey Gevers
Iranian APT Makes a Comeback with “Thunder and Lightning” Backdoor and Espionage Combo
Infy Tonnerre