Malpedia Library

Click here to download all references as Bib-File.•

2022-12-22 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyber attack on DELTA system users using RomCom/FateGrab/StealDeal malware (CERT-UA#5709)
ROMCOM RAT

2022-12-22 ⋅ Sentinel LABS ⋅ Antonio Cocomazzi
Custom-Branded Ransomware: The Vice Society Group and the Threat of Outsourced Development
Curator PolyVice

2022-12-22 ⋅ PRODAFT ⋅ PRODAFT
Fin7 Unveiled: A deep dive into notorious cybercrime gang
Carbanak

2022-12-22 ⋅ Fortinet ⋅ James Slaughter, Shunichi Imano
Ransomware Roundup – Play Ransomware
PLAY

2022-12-21 ⋅ Trustwave ⋅ Wojciech Cieslak
Malicious Macros Adapt to Use Microsoft Publisher to Push Ekipa RAT
Ekipa RAT

2022-12-21 ⋅ Microsoft ⋅ Microsoft Security Threat Intelligence
Microsoft research uncovers new Zerobot capabilities
ZeroBot SparkRAT

2022-12-21 ⋅ cocomelonc ⋅ cocomelonc
Malware development tricks: part 25. EnumerateLoadedModules. Simple C++ example.

2022-12-21 ⋅ Trendmicro ⋅ Byron Gelera, Don Ovid Ladores, Ivan Nicole Chavez, Khristian Joseph Morales, Monte de Jesus
Conti Team One Splinter Group Resurfaces as Royal Ransomware with Callback Phishing Attacks
Royal Ransom

2022-12-21 ⋅ Team Cymru ⋅ S2 Research Team
Inside the IcedID BackConnect Protocol
IcedID

2022-12-21 ⋅ Group-IB ⋅ Artem Grischenko
Godfather: A banking Trojan that is impossible to refuse
Godfather

2022-12-20 ⋅ ThreatBook ⋅ ThreatBook
Analysis of APT-C-60 Attack on South Korea
SpyGrace

2022-12-20 ⋅ Trend Micro ⋅ Christopher Daniel So
Raspberry Robin Malware Targets Telecom, Governments
Raspberry Robin Roshtyak

2022-12-20 ⋅ Palo Alto Networks Unit 42 ⋅ Unit42
Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of Ukraine
Unidentified VBS 005 (Telegram Loader)

2022-12-20 ⋅ The Record ⋅ Alexander Martin
Russian hackers targeted petroleum refining company in NATO state

2022-12-20 ⋅ K7 Security ⋅ Mellvin S
Lazarus APT’s Operation Interception Uses Signed Binary
Interception

2022-12-20 ⋅ Zscaler ⋅ Brett Stone-Gross
Nokoyawa Ransomware: Rust or Bust
Nokoyawa Ransomware

2022-12-20 ⋅ Twitter (@Gi7w0rm) ⋅ Gi7w0rm
Twitter posts discussing recent sighting of Laplas
LaplasClipper

2022-12-19 ⋅ BleepingComputer ⋅ Bill Toulas
Ukraine's DELTA military system users targeted by info-stealing malware

2022-12-19 ⋅ CrowdStrike ⋅ Donato Onofri, Sarang Sonawane
Malware Analysis: GuLoader Dissection Reveals New Anti-Analysis Techniques and Code Injection Redundancy
CloudEyE

2022-12-19 ⋅ Twitter (@jaydinbas) ⋅ Johann Aydinbas
Twitter thread describing ISO drop for Kami
KamiKakaBot