Malpedia Library

2021-04-09 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
A Relook at the TerraLoader Dropper DLL
TerraLoader

2021-04-07 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Not your same old adware anymore, PBOT updates

2021-04-07 ⋅ Medium sixdub ⋅ Justin Warner
Using Kaitai Struct to Parse Cobalt Strike Beacon Configs
Cobalt Strike

2021-04-05 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
TrickBot Crews New CobaltStrike Loader
Cobalt Strike TrickBot

2021-04-01 ⋅ Medium mikko-kenttala ⋅ Mikko Kenttälä
Zero click vulnerability in Apple’s macOS Mail

2021-03-29 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Android/Flubot: preparing for a new campaign?
FluBot

2021-03-24 ⋅ Medium Sebdraven ⋅ sebdraven
A .NET rat targets Mongolia
nmass malware

2021-03-16 ⋅ Medium CSIS Techblog ⋅ Aleksejs Kuprins
The Brief Glory of Cabassous/FluBot — a private Android banking botnet
FluBot

2021-03-05 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
A look at an Android bot from unpacking to DGA
FluBot

2021-03-02 ⋅ Medium Mehmet Ergene ⋅ Mehmet Ergene
Hunting for the Behavior: Scheduled Tasks

2021-03-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Investigation into the state of Nim malware
BazarNimrod Cobalt Strike

2021-03-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Nimar Loader
BazarBackdoor BazarNimrod Cobalt Strike

2021-02-23 ⋅ Medium (Katie’s Five Cents) ⋅ Katie Nickels
A Cyber Threat Intelligence Self-Study Plan: Part 1

2021-02-20 ⋅ Medium (Nasreddine Bencherchali) ⋅ Nasreddine Bencherchali
Finding Forensic Goodness In Obscure Windows Event Logs

2021-02-19 ⋅ Medium 0xthreatintel ⋅ 0xthreatintel
How to unpack SManager APT tool?
SManager

2021-02-09 ⋅ Medium (@alex.birsan) ⋅ Alex Birsan
Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies