Malpedia Library

2022-08-24 ⋅ Trellix ⋅ Adithya Chandra, Sushant Kumar Arya
Demystifying Qbot Malware
QakBot

2022-08-23 ⋅ Palo Alto Networks Unit 42 ⋅ Lucas Hu
Legitimate SaaS Platforms Being Used to Host Phishing Attacks

2022-08-23 ⋅ Zscaler ⋅ Kaivalya Khursale, Mitesh Wani
Making victims pay, infostealer malwares mimick pirated-software download sites
RedLine Stealer

2022-08-23 ⋅ Darktrace ⋅ Eugene Chua, Hanah Darley, Paul Jennings
Emotet Resurgence: Cross-Industry Campaign Analysis
Emotet

2022-08-22 ⋅ ⋅ Github (infinitumlabs) ⋅ infinitum IT
APT Group Targeting Government Institutions in Turkey

2022-08-22 ⋅ Medium (Katie’s Five Cents) ⋅ Katie Nickels
A Cyber Threat Intelligence Self-Study Plan: Part 2

2022-08-21 ⋅ Perception Point ⋅ Igal Lytzki
Behind the Attack: Remcos RAT
Remcos

2022-08-19 ⋅ vmware ⋅ Oleg Boyarchuk, Stefano Ortolani
How to Replicate Emotet Lateral Movement
Emotet

2022-08-19 ⋅ wordfence ⋅ Topher Tebow
Analyzing Attack Data and Trends Targeting Ukrainian Domains

2022-08-19 ⋅ Cybereason ⋅ Mark Tsipershtein
THREAT ALERT: Inside the Redeemer 2.0 Ransomware

2022-08-19 ⋅ nccgroup ⋅ Ross Inman
Back in Black: Unlocking a LockBit 3.0 Ransomware Attack
FAKEUPDATES Cobalt Strike LockBit

2022-08-19 ⋅ Github (Avast) ⋅ Avast
IOCs for Manjusaka
Manjusaka Manjusaka

2022-08-18 ⋅ NSFOCUS ⋅ NSFOCUS
New APT group MURENSHARK investigative report: Torpedoes hit Turkish Navy
LetMeOut

2022-08-18 ⋅ Fortinet ⋅ James Slaughter, Shunichi Imano
Ransomware Roundup: Gwisin, Kriptor, Cuba, and More
Cuba

2022-08-18 ⋅ DomainTools ⋅ DomainTools Research
A Sticky Situation Part 2

2022-08-18 ⋅ ⋅ NSFOCUS ⋅ NSFOCUS
New APT group MURENSHARK investigative report: Torpedoes hit Turkish Navy
Cobalt Strike

2022-08-18 ⋅ Sophos ⋅ Sean Gallagher
Cookie stealing: the new perimeter bypass
Cobalt Strike Meterpreter MimiKatz Phoenix Keylogger Quasar RAT

2022-08-18 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Luca Stealer Targets Password Managers and Cryptocurrency Wallets
Luca Stealer