Malpedia Library

Click here to download all references as Bib-File.•

2018-06-07 ⋅ Volexity ⋅ Matthew Meltzer, Sean Koessel, Steven Adair
Patchwork APT Group Targets US Think Tanks
Quasar RAT Unidentified 047 QUILTED TIGER

2018-04-20 ⋅ Booz Allen Hamilton ⋅ Jay Novak, Matthew Pennington
Researchers Discover New variants of APT34 Malware
BONDUPDATER POWRUNER

2018-02-12 ⋅ Cisco ⋅ Ben Baker, Matthew Molyett, Paul Rascagnères, Warren Mercer
Olympic Destroyer Takes Aim At Winter Olympics
Olympic Destroyer

2018-01-18 ⋅ NetScout ⋅ Kirk Soluk, Matt Bing, Pete Arzamendi
The ARC of Satori
Satori

2018-01-01 ⋅ DarkMatter ⋅ Taha K.
IN THE TRAILS OF WINDSHIFTAPT
WindTail WindShift

2017-12-05 ⋅ Certego ⋅ Matteo Lodi
Nearly undetectable Qarallax RAT spreading via spam

2017-10-26 ⋅ FireEye ⋅ Barry Vengerik, Ben Read, Brian Mordosky, Christopher Glyer, Ian Ahl, Matt Williams, Michael Matonis, Nick Carr
BACKSWING - Pulling a BADRABBIT Out of a Hat
EternalPetya

2017-09-20 ⋅ Cisco Talos ⋅ Craig Williams, Earl Carter, Edmund Brumaghin, Matthew Molyett, Matthew Olney, Paul Rascagnères, Warren Mercer
CCleaner Command and Control Causes Concern
CCleaner Backdoor

2017-09-18 ⋅ Cisco Talos ⋅ Craig Williams, Edmund Brumaghin, Matthew Molyett, Ross Gibb, Warren Mercer
CCleanup: A Vast Number of Machines at Risk
CCleaner Backdoor

2017-09-05 ⋅ Talos Intelligence ⋅ Holger Unterbrink, Matthew Molyett
Graftor - But I Never Asked for This…
Graftor

2017-09-05 ⋅ Cisco Talos ⋅ Holger Unterbrink, Matthew Molyett
Graftor - But I Never Asked for This…
Graftor

2017-08-25 ⋅ Proofpoint ⋅ Darien Huss, Matthew Mesa
Operation RAT Cook: Chinese APT actors use fake Game of Thrones leaks as lures
9002 RAT

2017-08-03 ⋅ Cisco Talos ⋅ Matthew Molyett
Taking the FIRST look at Crypt0l0cker
Crypt0l0cker

2017-07-31 ⋅ Proofpoint ⋅ Darien Huss, Matthew Mesa
FIN7/Carbanak threat actor unleashes Bateleur JScript backdoor
Bateleur FIN7

2017-07-20 ⋅ ESET Research ⋅ Frédéric Vachon, Matthieu Faou
Stantinko: A massive adware campaign operating covertly since 2012
Stantinko

2017-07-05 ⋅ Cisco Talos ⋅ Aleksandar Nikolic, David Maynor, Matt Olney, Yves Younan
The MeDoc Connection
TeleDoor

2017-06-28 ⋅ Comae ⋅ Matt Suiche
Petya.2017 is a wiper not a ransomware

2017-06-21 ⋅ Cisco ⋅ Alex Chiu, Jaeson Schultz, Matthew Molyett, Sean Baird, Warren Mercer
Player 1 Limps Back Into the Ring - Hello again, Locky!
Locky

2017-06-01 ⋅ Proofpoint ⋅ Axel F, Matthew Mesa, Pierre T, Travis Green
Microsoft Word Intruder Integrates CVE-2017-0199, Utilized by Cobalt Group to Target Financial Institutions
Cobalt

2017-05-19 ⋅ Comae ⋅ Matt Suiche
WannaCry — Decrypting files with WanaKiwi + Demos
WannaCryptor