Malpedia Library

Click here to download all references as Bib-File.•

2021-02-15 ⋅ Twitter (@TheDFIRReport) ⋅ The DFIR Report
Tweet on Qakbot post infection discovery activity
QakBot

2021-02-12 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
A twitter thread on discussing updated attack chain of EVILNUM group and their use PYVIL malware
PyVil

2021-02-10 ⋅ Lookout ⋅ Apurva Kumar, Kristin Del Rosso
Lookout Discovers Novel Confucius APT Android Spyware Linked to India-Pakistan Conflict

2021-02-03 ⋅ Trustwave ⋅ Trustwave SpiderLabs
New Vulnerabilities Discovered in SolarWinds Products by Trustwave SpiderLabs

2021-01-21 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Disclosure of Manling Flower Organization (APT-C-08) using Warzone RAT attack
Ave Maria

2021-01-18 ⋅ Symantec ⋅ Threat Hunter Team
Raindrop: New Malware Discovered in SolarWinds Investigation
Cobalt Strike Raindrop SUNBURST TEARDROP

2021-01-15 ⋅ The Hacker News ⋅ Ravie Lakshmaman
Researchers Disclose Undocumented Chinese Malware Used in Recent Attacks
CROSSWALK

2021-01-05 ⋅ Objective-See ⋅ Patrick Wardle
Discharging ElectroRAT
ElectroRAT

2021-01-04 ⋅ Cisco Talos ⋅ Azim Khodjibaev, Dmytro Korzhevin, Kendall McKay
Interview with a LockBit ransomware operator
LockBit

2020-12-21 ⋅ Cisco Talos ⋅ JON MUNSHAW
2020: The year in malware
WolfRAT Prometei Poet RAT Agent Tesla Astaroth Ave Maria CRAT Emotet Gozi IndigoDrop JhoneRAT Nanocore RAT NjRAT Oblique RAT SmokeLoader StrongPity WastedLocker Zloader

2020-12-21 ⋅ US Court of Appeals for the Ninth Court ⋅ Cisco, Github, Google, Internet Association, LinkedIn, Microsoft, VMWare, WhatsApp
Case: 20-16408: WhatsApp et al. vs NSO Group

2020-12-17 ⋅ Twitter (@megabeets_) ⋅ Itay Cohen
Tweet on SUNBURST malware discussing some of its evasion techniques
SUNBURST

2020-12-16 ⋅ Lookout ⋅ Apurva Kumar, Diane Wee, Justin Albrecht, Robert Nickle
Lookout Discovers New Spyware Used by Sextortionists to Blackmail iOS and Android Users
goontact

2020-12-14 ⋅ Cisco Talos ⋅ Nick Biasini
Threat Advisory: SolarWinds supply chain attack
SUNBURST TEARDROP

2020-12-09 ⋅ Cisco ⋅ Caitlin Huey, David Liebenberg
Quarterly Report: Incident Response trends from Fall 2020
Cobalt Strike IcedID Maze RansomEXX Ryuk

2020-11-19 ⋅ SANS ISC InfoSec Forums ⋅ Xavier Mertens
PowerShell Dropper Delivering Formbook
Formbook

2020-11-18 ⋅ Stratosphere Laboratory ⋅ Stratosphere Labs
Android Mischief Dataset
AhMyth AndroRAT SpyMax

2020-11-18 ⋅ Cisco ⋅ Edmund Brumaghin, Jaeson Schultz, Nick Biasini
Back from vacation: Analyzing Emotet’s activity in 2020
Emotet

2020-11-17 ⋅ Cisco Talos ⋅ Nikhil Hegde
Nibiru ransomware variant decryptor
Nibiru

2020-11-16 ⋅ Trend Micro ⋅ Trendmicro
Malicious Actors Target Comm Apps such as Zoom, Slack, Discord
WebMonitor RAT