Malpedia Library

Click here to download all references as Bib-File.•

2024-03-27 ⋅ dissect.ing ⋅ Scottish Fold
Analyzing the new Donex Ransomware
Donex

2024-03-27 ⋅ EclecticIQ ⋅ Arda Büyükkaya
Operation FlightNight: Indian Government Entities and Energy Sector Targeted by Cyber Espionage Campaign
HackBrowserData

2024-03-27 ⋅ Twitter (@embee_research) ⋅ Embee_research
Uncovering Malicious Infrastructure with DNS Pivoting
LokiBot XWorm

2024-03-26 ⋅ Medium zyadlzyatsoc ⋅ Zyad Elzyat
Comprehensive Analysis of EMOTET Malware: Part 1
Emotet

2024-03-26 ⋅ K7 Security ⋅ Vigneshwaran P
Unknown TTPs of Remcos RAT
Remcos

2024-03-26 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
ASEAN Entities in the Spotlight: Chinese APT Group Targeting
PUBLOAD

2024-03-26 ⋅ Lumen ⋅ Chris Formosa, Danny Adamitis, Ryan English, Steve Rudd
The Darkside Of TheMoon
TheMoon

2024-03-26 ⋅ EchoCTI ⋅ Bilal BAKARTEPE, bixploit
Agent Tesla Technical Analysis Report
Agent Tesla

2024-03-25 ⋅ ANY.RUN ⋅ Lena (LambdaMamba)
Reverse Engineering Snake Keylogger: Full .NET Malware Analysis Walkthrough
404 Keylogger GaboonGrabber

2024-03-25 ⋅ Github (veo) ⋅ veo
vshell
VShell

2024-03-25 ⋅ embeeresearch ⋅ Embee_research
Latrodectus Deobfuscation - Removal of Junk Comments and Self-Referencing Code
Latrodectus

2024-03-25 ⋅ iVerify ⋅ Matthias Frielingsdorf
Clipping Wings: Our Analysis of a Pegasus Spyware Sample
Chrysaor

2024-03-24 ⋅ Securonix ⋅ Securonix
Analysis of DEV#POPPER: New Attack Campaign Targeting Software Developers Likely Associated With North Korean Threat Actors
BeaverTail

2024-03-24 ⋅ Viuleeenz ⋅ Alessandro Strino
Understanding API Hashing and build a rainbow table for LummaStealer
Lumma Stealer

2024-03-22 ⋅ Digvijay Mane
Beware: Malicious Android Malware Disguised as Government Alerts.

2024-03-22 ⋅ Mandiant ⋅ Dan Black, Luke Jenkins
APT29 Uses WINELOADER to Target German Political Parties
WINELOADER

2024-03-22 ⋅ Palo Alto ⋅ Anmol Maurya, Benjamin Chang, Goutam Tripathy, Pranay Kumar Chhaparwal, Vishwa Thothathri
Large-Scale StrelaStealer Campaign in Early 2024
StrelaStealer

2024-03-21 ⋅ Mandiant ⋅ Adam Aprahamian, Austin Larsen, Dan Kelly, Marcin Siedlarz, Mathew Potaczek, Michael Raggi
Bringing Access Back — Initial Access Brokers Exploit F5 BIG-IP (CVE-2023-46747) and ScreenConnect
GOREVERSE SNOWLIGHT

2024-03-21 ⋅ cyber5w ⋅ M4lcode
CryptNet Ransomware Detailed Analysis
CryptNET

2024-03-21 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
Security Brief: TA450 Uses Embedded Links in PDF Attachments in Latest Campaign