Malpedia Library

Click here to download all references as Bib-File.•

2021-07-06 ⋅ AT&T ⋅ Fernando Martinez
Lazarus campaign TTPs and evolution

2021-07-04 ⋅ Sophos ⋅ Anand Ajjan, Mark Loman, Sean Gallagher
Independence Day: REvil uses supply chain exploit to attack hundreds of businesses
REvil

2021-07-01 ⋅ AT&T Cybersecurity ⋅ Fernando Martinez, Ofer Caspi
REvil’s new Linux version
REvil REvil

2021-06-27 ⋅ Fortinet ⋅ Gayathri Thirugnanasambandam
Spear Phishing Campaign with New Techniques Aimed at Aviation Companies
AsyncRAT

2021-06-24 ⋅ Binance ⋅ Binance
Binance Helps Take Down Cybercriminal Ring Laundering $500M in Ransomware Attacks
Clop

2021-06-19 ⋅ CISA ⋅ US-CERT
Alert (AA21-200A): Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
APT40

2021-06-16 ⋅ ⋅ Microstep Online Research Response Center ⋅ Ring-1
Evilnum organizes recent attacks against European financial companies
EVILNUM

2021-06-14 ⋅ AlienVault ⋅ Fernando Martinez
Malware hosting domain Cyberium fanning out Mirai variants
Mirai

2021-06-11 ⋅ SophosLabs Uncut ⋅ Anand Ajjan, Andrew Brandt, Hajnalka Kope, Mark Loman, Peter Mackenzie
Relentless REvil, revealed: RaaS as variable as the criminals who use it
REvil

2021-06-10 ⋅ ZAYOTEM ⋅ Abdulkadir Binan, Emrah Sarıdağ, Emre Doğan, İlker Verimoğlu, Kaan Binen
QakBot Technical Analysis Report
QakBot

2021-06-10 ⋅ ZAYOTEM ⋅ Bilal BAKARTEPE, Harun YAKUT, Sinan BAYKAN, Taha HİCRET
LokiBot Technical Analysis Report
LokiBot

2021-06-08 ⋅ Trend Micro ⋅ David Sancho, Feike Hacquebord, Fernando Mercês, Ian Kenefick, Mayra Fuentes, Robert McArdle, Stephen Hilt, Vladimir Kropotov
Modern Ransomware’s Double Extortion Tactics and How to Protect Enterprises Against Them
Nefilim

2021-06-04 ⋅ The Record ⋅ Catalin Cimpanu
EpsilonRed ransomware group hits one of India’s financial software powerhouses
Epsilon Red

2021-05-27 ⋅ cyjax ⋅ william thomas
Financial spear-phishing campaigns pushing RATs

2021-05-25 ⋅ Huntress Labs ⋅ Matthew Brennan
Cobalt Strikes Again: An Analysis of Obfuscated Malware
Cobalt Strike

2021-05-17 ⋅ Fortinet ⋅ Fred Gutierrez, Gayathri Thirugnanasambandam, Val Saengphaibul
Newly Discovered Function in DarkSide Ransomware Variant Targets Disk Partitions
DarkSide

2021-05-14 ⋅ NortonLifeLock ⋅ Armin Buescher, Gokulakrishnan S
How Flubot targets Android phone users and their money
FluBot

2021-05-12 ⋅ FBI ⋅ FBI
PIN Number 20210512-001: Spear-Phishing Attack Directing Recipients to Download a Fake Windows Application Impersonating a Financial Institution

2021-05-11 ⋅ nviso ⋅ Jeroen Beckers
Android overlay attacks on Belgian financial applications
Anatsa

2021-05-03 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
Rewterz Threat Alert – Financially Motivated Aggressive Group Carrying Out Ransomware Campaigns – Active IOCs
FiveHands SombRAT UNC2447