Malpedia Library

Click here to download all references as Bib-File.•

2021-11-16 ⋅ Blackberry ⋅ Dean Given, Eoin Wickens, Jim Simpson, Marta Janus, T.J. O'Leary, Tom Bonner
Finding Beacons in the dark
Cobalt Strike

2021-11-13 ⋅ YouTube (AGDC Services) ⋅ AGDC Services
Automate Qbot Malware String Decryption With Ghidra Script
QakBot

2021-11-12 ⋅ 360 netlab ⋅ Alex.Turing, Hui Wang, YANG XU
Malware uses namesilo Parking pages and Google's custom pages to spread

2021-11-11 ⋅ vmware ⋅ Giovanni Vigna, Jason Zhang, Stefano Ortolani, Threat Analysis Unit
Research Recap: How To Automate Malware Campaign Detection With Telemetry Peak Analyzer
Phorpiex QakBot

2021-11-10 ⋅ CrowdStrike ⋅ Antonio Parata
Ploutus ATM Malware Case Study: Automated Deobfuscation of a Strongly Obfuscated .NET Binary
Ploutus ATM

2021-11-09 ⋅ Trend Micro ⋅ Trend Micro Research
Compromised Docker Hub Accounts Abused for Cryptomining Linked to TeamTNT

2021-10-27 ⋅ Avast Decoded ⋅ Avast
Avast releases decryptor for AtomSilo and LockFile ransomware
ATOMSILO LockFile

2021-10-24 ⋅ Microsoft ⋅ Tom Burt
New activity from Russian actor Nobelium

2021-10-15 ⋅ Zscaler ⋅ Rajdeepsinh Dodia
AtomSilo Ransomware Enters the League of Double Extortion
ATOMSILO

2021-10-13 ⋅ Chuongdong blog ⋅ Chuong Dong
AtomSilo Ransomware
ATOMSILO

2021-10-07 ⋅ Aragorn Tseng, Charles Li, Peter Syu, Tom Lai
Evolution after prosecution : Psychedelic APT41
Dizzyvoid

2021-10-07 ⋅ Microsoft ⋅ Tom Burt
Russian cyberattacks pose greater risk to governments and other insights from our annual report

2021-10-06 ⋅ Cybereason ⋅ Assaf Dahan, Chen Erlich, Daniel Frank, Tom Fakterman
Operation GhostShell: Novel RAT Targets Global Aerospace and Telecoms Firms
ShellClient RAT

2021-10-04 ⋅ Sophos ⋅ Chaitanya Ghorpade, Kajal Katiyar, Krisztián Diriczi, Rahil Shah, Sean Gallagher, Vikas Singh
Atom Silo ransomware actors use Confluence exploit, DLL side-load for stealthy attack
ATOMSILO Cobalt Strike

2021-10-04 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
Malware Gh0stTimes Used by BlackTech
Gh0stTimes Ghost RAT

2021-10-01 ⋅ 0ffset Blog ⋅ Chuong Dong
SQUIRRELWAFFLE – Analysing the Custom Packer
Cobalt Strike Squirrelwaffle

2021-09-29 ⋅ Kaspersky Labs ⋅ Ivan Kwiatkowski, Pierre Delcher
DarkHalo after SolarWinds: the Tomiris connection (UNC2849)
tomiris Storm-0473

2021-09-27 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Gilbert Sison, Joelson Soares, Ryan Maglaque, Warren Sto.Tomas
Fake Installers Drop Malware and Open Doors for Opportunistic Attackers
RedLine Stealer Socelars Vidar

2021-09-24 ⋅ Trend Micro ⋅ Warren Sto.Tomas
Examining the Cring Ransomware Techniques
Cobalt Strike Cring MimiKatz