Malpedia Library

Click here to download all references as Bib-File.•

2021-01-04 ⋅ Morphisec ⋅ Arnold Osipov
Threat Profile the Evolution of the FIN7 JSSLoader
JSSLoader

2020-12-25 ⋅ Comae ⋅ Matt Suiche
SUNBURST & Memory Analysis
SUNBURST

2020-12-17 ⋅ Trend Micro ⋅ Feike Hacquebord, Lord Alfred Remorin
Pawn Storm’s Lack of Sophistication as a Strategy
DriveOcean

2020-12-15 ⋅ Twitter @cybercdh) ⋅ Colin Hardy
Tweet on some more capabilties of SUNBURST backdoor
SUNBURST

2020-12-14 ⋅ Juniper ⋅ Asher Langton
Everything but the kitchen sink: more attacks from the Gitpaste-12 worm

2020-12-09 ⋅ Avast Decoded ⋅ Igor Morgenstern, Luigino Camastra
APT Group Targeting Governmental Agencies in East Asia
LaZagne Albaniiutas HyperBro MimiKatz PolPo Tmanger TaskMasters

2020-12-09 ⋅ Avast Decoded ⋅ Igor Morgenstern, Luigino Camastra
APT Group Targeting Governmental Agencies in East Asia
Albaniiutas HyperBro PlugX Tmanger TA428

2020-12-09 ⋅ Avast Decoded ⋅ Igor Morgenstern, Luigino Camastra
APT Group Targeting Governmental Agencies in East Asia
Albaniiutas HyperBro PlugX PolPo Tmanger

2020-12-04 ⋅ Red Canary ⋅ Red Canary
Yellow Cockatoo: Search engine redirects, in-memory remote access trojan, and more
Yellow Cockatoo RAT

2020-12-02 ⋅ Aqua Nautilus ⋅ Assaf Morag, Idan Revivo
Threat Alert: Fileless Malware Executing in Containers
TeamTNT

2020-12-02 ⋅ Aqua ⋅ Assaf Morag, Idan Revivo
Threat Alert: Fileless Malware Executing in Containers
Tsunami

2020-11-19 ⋅ Armorblox ⋅ Arjun Sambamoorthy
OK Google, Build Me a Phishing Campaign

2020-11-17 ⋅ Twitter (@VK_intel) ⋅ Vitali Kremez
Tweet on a new fileless TrickBot loading method using code from MemoryModule
TrickBot

2020-11-12 ⋅ Morphisec ⋅ Arnold Osipov
Threat Profile: JUPYTER INFOSTEALER
solarmarker

2020-11-12 ⋅ YouTube (Tomorrow Unlocked) ⋅ Tomorrow Unlocked
They wanted us to point the finger in the wrong direction!
Olympic Destroyer

2020-11-12 ⋅ YouTube (Tomorrow Unlocked) ⋅ Tomorrow Unlocked
Those hackers wanted to be found!
Olympic Destroyer

2020-11-12 ⋅ YouTube (Tomorrow Unlocked) ⋅ Tomorrow Unlocked
Who hacked the 2018 Winter Games?
Olympic Destroyer

2020-11-05 ⋅ Morphisec ⋅ Michael Gorelik
Agent Tesla: A Day in a Life of IR
Agent Tesla

2020-10-29 ⋅ Twitter (@SophosLabs) ⋅ SophosLabs
Tweet on similarities between BUER in-memory loader & RYUK in-memory loader
Buer Ryuk

2020-10-19 ⋅ IBM Security ⋅ Chen Nahman, Limor Kessem, Ofir Ozer
New Vizom Malware Discovered Targets Brazilian Bank Customers with Remote Overlay Attacks
Vizom