Malpedia Library

Click here to download all references as Bib-File.•

2025-06-04 ⋅ Proofpoint ⋅ Abdallah Elshinbary, Jonas Wagner, Konstantin Klinger, Nick Attfield
The Bitter End: Unraveling Eight Years of Espionage Antics—Part One
Artra Downloader Havoc

2025-06-03 ⋅ ThreatFabric ⋅ ThreatFabric
Crocodilus Mobile Malware: Evolving Fast, Going Global
Crocodilus

2025-05-28 ⋅ Medium (@mvaks) ⋅ mvaks
Bombardino Crocodilo in Poland — analysis of IKO Lokaty mobile malware campaign
Crocodilus

2025-05-28 ⋅ Rapid7 ⋅ Anna Širokova, Ivan Feigl
NSIS Abuse and sRDI Shellcode: Anatomy of the Winos 4.0 Campaign
Winos

2025-05-28 ⋅ EclecticIQ ⋅ Alon Gal, Arda Büyükkaya
Pakistan Telecommunication Company (PTCL) Targeted by Bitter APT During Heightened Regional Conflict
WmRAT

2025-05-28 ⋅ Google ⋅ Patrick Whitsell
Mark Your Calendar: APT41 Innovative Tactics
TOUGHPROGRESS

2025-05-28 ⋅ Trustwave ⋅ Cris Tomboc, King Orande
PhaaS the Secrets: The Hidden Ties Between Tycoon2FA and Dadsec's Operations

2025-05-27 ⋅ DomainTools ⋅ DomainTools
Inside a VenomRAT Malware Campaign
Venom RAT

2025-05-27 ⋅ DCSO ⋅ Bennet Conrads, Denis Szadkowski, Johann Aydinbas, Moaath Oudeh
SafePay: The new kid on the block
SafePay

2025-05-27 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
New Russia-affiliated actor Void Blizzard targets critical sectors for espionage
Void Blizzard

2025-05-27 ⋅ AIVD ⋅ AIVD
AIVD and MIVD identify new Russian cyber threat actor

2025-05-26 ⋅ Yonhap News Agency ⋅ Kim Boram
Investigation into SK Telecom data breach expands to KT, LG Uplus: sources
BPFDoor

2025-05-22 ⋅ Elastic ⋅ Daniel Stepanic
De-obfuscating ALCATRAZ
DOUBLELOADER Rhadamanthys

2025-05-22 ⋅ Recorded Future ⋅ Insikt Group
Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Templates
CHERRYSPY HATVIBE

2025-05-22 ⋅ Sekoia ⋅ Félix Aime, Jeremy Scion
ViciousTrap – Infiltrate, Control, Lure: Turning edge devices into honeypots en masse.

2025-05-22 ⋅ Cisco Talos ⋅ Asheer Malhotra, Brandon White
UAT-6382 exploits Cityworks zero-day vulnerability to deliver malware
Tetra Loader

2025-05-22 ⋅ Flashpoint ⋅ Flashpoint
Operation Endgame: Global Law Enforcement Takes Down DanaBot Malware Scheme
DanaBot

2025-05-21 ⋅ Trendmicro ⋅ Junestherry Dela Cruz
TikTok Videos Promise Pirated Apps, Deliver Vidar and StealC Infostealers Instead
Stealc Vidar

2025-05-21 ⋅ Datadog ⋅ Andy Giron, Eslam Salem, Ian Kretz, Tesnim Hamdouni
The obfuscation game: MUT-9332 targets Solidity developers via malicious VS Code extensions
Unidentified 122 (Stealer)

2025-05-21 ⋅ Bleeping Computer ⋅ Bill Toulas
Russia to enforce location tracking app on all foreigners in Moscow