Malpedia Library

Click here to download all references as Bib-File.•

2021-03-25 ⋅ VMWare Carbon Black ⋅ Baibhav Singh, Giovanni Vigna, Threat Analysis Unit
Memory Forensics for Virtualized Hosts

2021-03-18 ⋅ VinCSS ⋅ m4n0w4r, Tran Trung Kien
[RE021] Qakbot analysis – Dangerous malware has been around for more than a decade
QakBot

2021-03-18 ⋅ Github (lacework) ⋅ lacework-labs
DGA and decoder scripts for n3cr0morph IRC malware
N3Cr0m0rPh

2021-03-16 ⋅ Morphisec ⋅ Nadav Lorber
Tracking HCrypt: An Active Crypter as a Service
AsyncRAT LimeRAT Remcos

2021-03-16 ⋅ Elastic ⋅ Joe Desimone
Detecting Cobalt Strike with memory signatures
Cobalt Strike

2021-03-12 ⋅ 360 netlab ⋅ Alex.Turing, liuyang, YANG XU
New Threat: ZHtrap botnet implements honeypot to facilitate finding more victims
ZHtrap

2021-03-11 ⋅ IBM ⋅ Dave McMillen, Limor Kessem
Dridex Campaign Propelled by Cutwail Botnet and Poisonous PowerShell Scripts
Cutwail Dridex

2021-03-11 ⋅ Cofense ⋅ Elmer Hernandez
AutoHotKey Leveraged by Metamorfo/Mekotio Banking Trojan
Metamorfo

2021-03-09 ⋅ Morphisec ⋅ Alon Groisman
MineBridge Is on the Rise, With a Sophisticated Delivery Mechanism
MINEBRIDGE

2021-03-02 ⋅ Atlantic Council ⋅ James Shires, JD Work, Luca Allodi, Patrick Howell O'Neill, Robert Morgus, Trey Herr, Winnona Desombre
Countering Cyber Proliferation: Zeroing in on Access-as-a-Service

2021-02-19 ⋅ The Record ⋅ Adam Janofsky, Timo Steffens
Cyber Attribution Is More Art Than Science. This Researcher Has a Plan to Change That

2021-02-18 ⋅ of0x.cc ⋅ of0x.cc
One thousand and one ways to copy your shellcode to memory (VBA Macros)

2021-02-17 ⋅ Aquasec ⋅ Assaf Morag
Threat Alert: TeamTNT Pwn Campaign Against Docker and K8s Environments
TeamTNT TeamTNT

2021-02-15 ⋅ Silent Push ⋅ Martijn Grooten
More LodaRAT infrastructure targeting Bangladesh uncovered
Loda