Malpedia Library

Click here to download all references as Bib-File.•

2022-05-19 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
.NET Stubs: Sowing the Seeds of Discord (PureCrypter)
Aberebot AbstractEmu AdoBot 404 Keylogger Agent Tesla Amadey AsyncRAT Ave Maria BitRAT BluStealer Formbook LimeRAT Loki Password Stealer (PWS) Nanocore RAT Orcus RAT Quasar RAT Raccoon RedLine Stealer WhisperGate

2022-05-19 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
.NET Stubs: Sowing the Seeds of Discord
Agent Tesla Quasar RAT WhisperGate

2022-05-18 ⋅ Cisco Talos ⋅ Holger Unterbrink
The BlackByte ransomware group is striking users all over the globe
BlackByte

2022-05-12 ⋅ Morphisec ⋅ Hido Cohen
New SYK Crypter Distributed Via Discord
AsyncRAT Ave Maria Nanocore RAT NjRAT Quasar RAT RedLine Stealer

2022-05-12 ⋅ Uptycs ⋅ Uptycs Threat Research
KurayStealer: A Bandit Using Discord Webhooks

2022-05-12 ⋅ Cisco ⋅ María José Erquiaga, Onur Mustafa Erdogan
Network Footprints of Gamaredon Group
Pteranodon

2022-05-11 ⋅ SANS ISC ⋅ Brad Duncan
TA578 using thread-hijacked emails to push ISO files for Bumblebee malware
BumbleBee

2022-05-11 ⋅ Cisco Talos ⋅ Cisco Talos
Bitter APT adds Bangladesh to their targets
AndroRAT Artra Downloader Bitter RAT ZxxZ

2022-05-05 ⋅ Cisco Talos ⋅ Aliza Berk, Asheer Malhotra, Jung soo An, Justin Thattil, Kendall McKay
Mustang Panda deploys a new wave of malware targeting Europe
Cobalt Strike Meterpreter PlugX PUBLOAD

2022-05-03 ⋅ Cisco ⋅ JAIME FILSON, Kendall McKay, Paul Eubanks.
Conti and Hive ransomware operations: Leveraging victim chats for insights
Conti Hive

2022-05-02 ⋅ Cisco Talos ⋅ JAIME FILSON, Kendall McKay, Paul Eubanks
Conti and Hive ransomware operations: Leveraging victim chats for insights
Cobalt Strike Conti Hive

2022-04-25 ⋅ SANS ISC ⋅ Xavier Mertens
Simple PDF Linking to Malicious Content

2022-04-21 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
GOLD ULRICK Continues Conti Operations Despite Public Disclosures
Conti Conti

2022-04-20 ⋅ SANS ISC ⋅ Brad Duncan
'aa' distribution Qakbot (Qbot) infection with DarkVNC traffic
QakBot

2022-04-18 ⋅ Nozomi Networks ⋅ Nozomi Networks Labs
New BotenaGo Variant Discovered by Nozomi Networks Labs
BotenaGo

2022-04-14 ⋅ Twitter (@silascutler) ⋅ Silas Cutler
Tweet on sample discovery for potential INCONTROLLER
INCONTROLLER

2022-04-14 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vanja Svajcer
"Haskers Gang" Introduces New ZingoStealer
Ginzo Stealer ZingoStealer

2022-04-14 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Michael Chen, Vanja Svajcer
Threat Spotlight: "Haskers Gang" Introduces New ZingoStealer
RedLine Stealer

2022-04-07 ⋅ The Hacker News ⋅ Ravie Lakshmanan
First Malware Targeting AWS Lambda Serverless Platform Discovered
Denonia

2022-04-06 ⋅ Cado Security ⋅ Al Carchrie, Chris Doman, Matt Muir, Paul Scott
Cado Discovers Denonia: The First Malware Specifically Targeting Lambda
Denonia