Malpedia Library

2023-04-13 ⋅ GOV.PL ⋅ CERT.PL, Military Counterintelligence Service
SNOWYAMBER - Malware Analysis Report
GraphicalNeutrino

2023-04-13 ⋅ ⋅ CERT.PL ⋅ CERT.PL
CERT Polska and SKW warn against the activities of Russian spies
BOOMBOX EnvyScout SUNBURST

2023-04-13 ⋅ Google ⋅ Google Threat Analysis Group, Mike Trinh, Pierre-Marc Bureau
Continuing our work to hold cybercriminal ecosystems accountable
CryptBot

2023-04-13 ⋅ OALabs ⋅ Sergei Frankoff
Quasar Chaos: Open Source Ransomware Meets Open Source RAT
Chaos Quasar RAT

2023-04-13 ⋅ YouTube (The Korea Society) ⋅ Jean Lee, Mandiant, Michael Barnhart
The North Korean Cyber Threat

2023-04-13 ⋅ Medium Invictus Incident Response ⋅ Invictus Incident Response
Ransomware in the cloud

2023-04-13 ⋅ CyberArk ⋅ CyberArk Labs
The (Not so) Secret War on Discord
Empyrean

2023-04-13 ⋅ Trellix ⋅ Max Kersten
Read The Manual Locker: A Private RaaS Provider
RTM Locker

2023-04-13 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Threat actors strive to cause Tax Day headaches
CloudEyE Remcos

2023-04-13 ⋅ Sublime ⋅ Sam Scholten
Detecting QakBot: WSF attachments, OneNote files, and generic attack surface reduction
QakBot

2023-04-13 ⋅ GOV.PL ⋅ gov.pl
Espionage campaign linked to Russian intelligence services

2023-04-13 ⋅ Yoroi ⋅ Carmelo Ragusa, Luigi Martire
Money Ransomware: The Latest Double Extortion Group
Money Message

2023-04-13 ⋅ d01a ⋅ Mohamed Adel
Aurora Stealer deep dive Analysis
Aurora Stealer

2023-04-12 ⋅ circleid ⋅ WhoisXML API
Probing Lorec53 Phishing through the DNS Microscope
SaintBear

2023-04-12 ⋅ Akamai ⋅ Stiv Kupchik
Investigating the resurgence of the Mexals campaign

2023-04-12 ⋅ Gridinsoft ⋅ Gridinsoft Cyber Security
XMRig is one of the most widespread malicious miners, that exploits hardware to mine Monero
xmrig

2023-04-12 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Recent IcedID (Bokbot) activity
IcedID PhotoLoader

2023-04-12 ⋅ SANS ISC ⋅ Brad Duncan
Recent IcedID (Bokbot) activity
IcedID