Malpedia Library

2019-04-30 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Behind the Scenes with OilRig
BONDUPDATER

2019-04-17 ⋅ Palo Alto Networks Unit 42 ⋅ Brittany Ash, Robert Falcone
Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign
Hagga The Gorgon Group

2019-04-08 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
Mirai Compiled for New Processors Surfaces in the Wild
Mirai

2019-03-19 ⋅ Palo Alto Networks Unit 42 ⋅ Josh Grunzweig, Tom Lancaster
Cardinal RAT Sins Again, Targets Israeli Fin-Tech Firms
EVILNUM Cardinal RAT EVILNUM

2019-03-18 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
New Mirai Variant Targets Enterprise Wireless Presentation & Display Systems
Mirai

2019-03-12 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Operation Comando: How to Run a Cheap and Effective Credit Card Business
Operation Comando

2019-03-04 ⋅ Palo Alto Networks Unit 42 ⋅ Brittany Ash, Robert Falcone
New Python-Based Payload MechaFlounder Used by Chafer
APT39

2019-02-26 ⋅ Palo Alto Networks Unit 42 ⋅ Alex Hinchliffe, Mike Harbison
Farseer: Previously Unknown Malware Family bolsters the Chinese armoury
Farseer

2019-02-25 ⋅ Palo Alto Networks Unit 42 ⋅ Brittany Ash, Josh Grunzweig
Multiple ArtraDownloader Variants Used by BITTER to Target Pakistan
Artra Downloader

2019-02-22 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
New BabyShark Malware Targets U.S. National Security Think Tanks
BabyShark Kimsuky

2019-02-21 ⋅ Palo Alto Networks Unit 42 ⋅ Adran McCabe
Shifting in the Wind: WINDSHIFT Attacks Target Middle Eastern Governments
WindShift

2019-02-01 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi, Vicky Ray
Tracking OceanLotus’ new Downloader, KerrDown
KerrDown

2019-01-17 ⋅ Palo Alto Networks Unit 42 ⋅ Claud Xiao, Xingyu Jin
Malware Used by “Rocke” Group Evolves to Evade Detection by Cloud Security Products
Rocke

2018-12-19 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi
Analysis of Smoke Loader in New Tsunami Campaign
SmokeLoader

2018-12-13 ⋅ Palo Alto Networks Unit 42 ⋅ Robert Falcone
Shamoon 3 Targets Oil and Gas Organization
DistTrack

2018-12-12 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Dear Joohn: The Sofacy Group’s Global Campaign
APT28

2018-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan
APT28

2018-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan
Cannon

2018-11-16 ⋅ Palo Alto Networks Unit 42 ⋅ Kyle Wilhoit, Robert Falcone
Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery
OilRig

2018-11-05 ⋅ Palo Alto Networks Unit 42 ⋅ Tom Lancaster
Inception Attackers Target Europe with Year-old Office Vulnerability
PowerShower Inception Framework