Malpedia Library

Click here to download all references as Bib-File.•

2023-06-29 ⋅ SentinelOne ⋅ Alex Delamotte, Jim Walter
Rhysida Ransomware | RaaS Crawls Out of Crimeware Undergrowth to Attack Chilean Army
Rhysida

2023-06-29 ⋅ Sekoia ⋅ sekoia
Following NoName057(16) DDoSia Project’s Targets
Dosia

2023-06-29 ⋅ Elastic ⋅ Andrew Pease, Colson Wilhoit, Ricardo Ungureanu, Salim Bitam, Seth Goodwin
The DPRK strikes using a new variant of RUSTBUCKET
RustBucket

2023-06-29 ⋅ Avast Decoded ⋅ Threat Research Team
Decrypted: Akira Ransomware
Akira

2023-06-29 ⋅ DeepInstinct ⋅ Deep Instinct Threat Lab, Simon Kenin
PhonyC2: Revealing a New Malicious Command & Control Framework by MuddyWater
PhonyC2 POWERSTATS

2023-06-28 ⋅ BI. ZONE Cyber Threats Research Team ⋅ Oleg Skulkin
Red Wolf is back to spy on commercial firms Red Wolf is back to spy on commercial firms
RedCurl

2023-06-28 ⋅ vmware ⋅ Bria Beathley, Dana Behling, Deborah Snyder, Fae Carlisle
8Base Ransomware: A Heavy Hitting Player
8Base Phobos SmokeLoader SystemBC

2023-06-28 ⋅ Mandiant ⋅ Alexander Marvi, Greg Blaum, Ron Craft
Detection, Containment, and Hardening Opportunities for Privileged Guest Operations, Anomalous Behavior, and VMCI Backdoors on Compromised VMware Hosts
UNC3886

2023-06-28 ⋅ ⋅ AhnLab ⋅ Sanseo
Kimsuky Attack Group Abusing Chrome Remote Desktop
Appleseed

2023-06-28 ⋅ Kaspersky Labs ⋅ GReAT
Andariel’s silly mistakes and a new malware family
Jupiter

2023-06-28 ⋅ SpecterOps ⋅ Craig Wright
Sowing Chaos and Reaping Rewards in Confluence and Jira

2023-06-28 ⋅ Volexity ⋅ Ankur Saini, Charlie Gardner
Charming Kitten Updates POWERSTAR with an InterPlanetary Twist
POWERSTAR

2023-06-28 ⋅ RussianPanda
Meduza Stealer or The Return of The Infamous Aurora Stealer
Meduza Stealer

2023-06-27 ⋅ ⋅ Youtube (PROIDEA Events) ⋅ Michał Łopacki, Piotr Zarzycki
Piotr Zarzycki, Michał Łopacki - Proxy dla przestępców na Twoim urządzeniu [OMH 2022]

2023-06-27 ⋅ Viuleeenz ⋅ Alessandro Strino
IDA-Python - Locate a function independently from its offset

2023-06-27 ⋅ ZeroFox ⋅ ZeroFox Dark Ops intelligence team
The Underground Economist: Volume 3, Issue 12
DarkGate Meduza Stealer

2023-06-27 ⋅ SecurityIntelligence ⋅ Charlotte Hammond, Ole Villadsen
The Trickbot/Conti Crypters: Where Are They Now?
Black Basta Conti Mount Locker PhotoLoader Royal Ransom SystemBC TrickBot

2023-06-26 ⋅ Github (cocomelonc) ⋅ cocomelonc
Malware AV/VM evasion - part 18: encrypt/decrypt payload via modular multiplication-based block cipher. Simple C++ example.

2023-06-26 ⋅ ThreatFabric ⋅ ThreatFabric
Anatsa banking Trojan hits UK, US and DACH with new campaign
Anatsa

2023-06-24 ⋅ Twitter (@embee_research) ⋅ Embee_research
SmokeLoader - Malware Analysis and Decoding With Procmon
SmokeLoader