Malpedia Library

Click here to download all references as Bib-File.•

2021-09-02 ⋅ MalwareBookReports ⋅ muzi
Cross-Platform Java Dropper: Snake and XLoader (Mac Version)
Xloader 404 Keylogger

2021-09-02 ⋅ US Department of Health and Human Services ⋅ Health Sector Cybersecurity Coordination Center (HC3)
Demystifying BlackMatter
BlackMatter BlackMatter DarkSide

2021-09-02 ⋅ Bloomberg ⋅ Jordan Robertson
Juniper Breach Mystery Starts to Clear With New Details on Hackers and U.S. Role (APT5)

2021-09-02 ⋅ ⋅ KrCert ⋅ KrCERT
TTPs#6 Targeted Watering Hole Attack Strategy Analysis (SILENT CHOLLIMA)
Tiger RAT

2021-09-02 ⋅ Anomali ⋅ Gage Mele, Rory Gould, Sean Townsend, Tara Gould
Cybercrime Group FIN7 Using Windows 11 Alpha-Themed Docs to Drop Javascript Backdoor

2021-09-02 ⋅ Twitter (@th3_protoCOL) ⋅ Colin, GaborSzappanos
Tweet on Confluence Server exploitation (CVE-2021-26084) in the wild and cobaltsrike activity (mentioned in replies by GaborSzappanos)
Cobalt Strike

2021-09-02 ⋅ Juniper ⋅ Alex Burt, Asher Langton
Attacks Continue Against Realtek Vulnerabilities
Dark

2021-09-02 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Autodesk reveals it was targeted by Russian SolarWinds hackers
SUNBURST

2021-09-01 ⋅ YouTube (Hack In The Box Security Conference) ⋅ Joey Chen, Yi-Jhen Hsieh
SHADOWPAD: Chinese Espionage Malware-as-a-Service
PlugX ShadowPad

2021-09-01 ⋅ YouTube (Black Hat) ⋅ Anurag Khanna, Thirumalai Natarajan Muthiah
Threat Hunting in Active Directory Environment

2021-09-01 ⋅ YouTube (Black Hat) ⋅ Junyu Zhou, Tianze Ding
Domain Borrowing: Catch My C2 Traffic if You Can

2021-09-01 ⋅ YouTube (Black Hat) ⋅ Aragorn Tseng, Charles Li
Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
Cobalt Strike PlugX Waterbear

2021-09-01 ⋅ YouTube (Black Hat) ⋅ Christian Doerr, Tsuyoshi Taniguchi
How Did the Adversaries Abusing the Bitcoin Blockchain Evade Our Takeover?
Cerber Pony

2021-09-01 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
APT-C-56 (Transparent Tribe) Latest Attack Analysis and Associated Suspected Gorgon Group Attack Analysis Alert
Crimson RAT NetWire RC

2021-09-01 ⋅ Uptycs ⋅ Pritam Salunkhe, Shilpesh Trivedi
LOLBins Are No Laughing Matter: How Attackers Operate Quietly

2021-09-01 ⋅ Medium s2wlab ⋅ Chaewon Moon, Denise Dasom Kim, Jungyeon Lim, S2W LAB INTELLIGENCE TEAM, Sujin Lim, Yeonghyeon Jeong
BlackMatter x Babuk : Using the same web server for sharing leaked files
Babuk BlackMatter Babuk BlackMatter

2021-09-01 ⋅ FireEye ⋅ Adrien Bataille, Blaine Stancill
Too Log; Didn't Read — Unknown Actor Using CLFS Log Files for Stealth
PRIVATELOG STASHLOG

2021-08-31 ⋅ BreakPoint Labs ⋅ BreakPoint Labs
Cobalt Strike and Ransomware – Tracking An Effective Ransomware Campaign
Cobalt Strike

2021-08-31 ⋅ ⋅ Seguranca Informatica ⋅ Pedro Tavares
Phishing+Telegram: Solicitação de reembolso da Autoridade Tributária?

2021-08-31 ⋅ Minerva Labs ⋅ Minerva Labs
BlackMatter - The New Star Of Ransomware
BlackMatter