Malpedia Library

Click here to download all references as Bib-File.•

2023-01-19 ⋅ Cisco ⋅ Guilherme Venere
Following the LNK metadata trail
BumbleBee PhotoLoader QakBot

2023-01-19 ⋅ cyble ⋅ Cyble
Gigabud RAT: New Android RAT Masquerading as Government Agencies
Gigabud

2023-01-19 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Gamaredon (Ab)uses Telegram to Target Ukrainian Organizations
Unidentified VBS 006 (Telegram Loader)

2023-01-19 ⋅ Mandiant ⋅ Cristiana Kittner, Mark Lechtik, Sarah Hawley, Scott Henderson
Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475)
BOLDMOVE BOLDMOVE

2023-01-19 ⋅ Team Cymru ⋅ S2 Research Team
Darth Vidar: The Dark Side of Evolving Threat Infrastructure
Vidar

2023-01-19 ⋅ Kaspersky Labs ⋅ GReAT
Roaming Mantis implements new DNS changer in its malicious mobile app in 2022
MoqHao

2023-01-19 ⋅ ThreatFabric ⋅ ThreatFabric
Hook: a new Ermac fork with RAT capabilities
Hook

2023-01-18 ⋅ ⋅ ANSSI ⋅ ANSSI
Panorama of the Cyber Threat 2022

2023-01-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit42
Chinese Playful Taurus Activity in Iran
turian

2023-01-18 ⋅ SANS ISC ⋅ Brad Duncan
Malicious Google Ad --> Fake Notepad++ Page --> Aurora Stealer malware
Aurora Stealer

2023-01-18 ⋅ Twitter (@Gi7w0rm) ⋅ Gi7w0rm
A long way to SectopRat
SectopRAT

2023-01-17 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Peter Girnus
Earth Bogle: Campaigns Target the Middle East with Geopolitical Lures
NjRAT

2023-01-17 ⋅ Trendmicro ⋅ Junestherry Dela Cruz
Batloader Malware Abuses Legitimate Tools, Uses Obfuscated JavaScript Files in Q4 2022 Attacks
BATLOADER

2023-01-17 ⋅ Qianxin ⋅ Red Raindrop Team
Kasablanka Group Probably Conducted Compaigns Targeting Russia
Ave Maria Loda

2023-01-16 ⋅ Difesa & Sicurezza ⋅ Francesco Bussoletti
Cybercrime, RFQ from Turkey carries AgentTesla and zgRAT
Agent Tesla zgRAT

2023-01-16 ⋅ Intrinsec ⋅ Intrinsec
ProxyNotShell – OWASSRF – Merry Xchange
Cobalt Strike SystemBC

2023-01-16 ⋅ ANALYST1 ⋅ Jon DiMaggio
Unlocking Lockbit: A Ransomware Story
LockBit LockBit

2023-01-16 ⋅ Twitter (@zachxbt) ⋅ ZachXBT
Tweet on ETH movement of Lazarus

2023-01-16 ⋅ Medium elis531989 ⋅ Eli Salem
Dancing With Shellcodes: Analyzing Rhadamanthys Stealer
Rhadamanthys

2023-01-14 ⋅ YouTube (CODE BLUE) ⋅ Takahiro Haruyama
[CB22]Tracking the Entire Iceberg - Long-term APT Malware C2 Protocol Emulation and Scanning
ShadowPad Winnti