Malpedia Library

Click here to download all references as Bib-File.•

2022-12-06 ⋅ Twitter (@URSNIFleak) ⋅ URSNIFleak
Twitter account with leaked data about the group behind URSNIF
RM3

2022-12-06 ⋅ ⋅ 360 Threat Intelligence Center ⋅ 360 Beacon Lab
Analysis of suspected APT-C-56 (Transparent Tribe) attacks against terrorism
AhMyth Meterpreter SpyNote AsyncRAT

2022-12-06 ⋅ Zscaler ⋅ Dennis Schwarz
Technical Analysis of DanaBot Obfuscation Techniques
DanaBot

2022-12-06 ⋅ BitSight ⋅ João Batista
Cova and Nosu: a new loader spreads a new stealer
Cova Nosu

2022-12-06 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Mustang Panda Uses the Russian-Ukrainian War to Attack Europe and Asia Pacific Targets
PlugX

2022-12-05 ⋅ Sekoia ⋅ Félix Aime, Maxime A, Sekoia TDR
Calisto show interests into entities involved in Ukraine war support
Callisto

2022-12-05 ⋅ Accenture ⋅ Paul Mansfield, Thomas Willkan
Popularity spikes for information stealer malware on the dark web
MetaStealer Rhadamanthys

2022-12-05 ⋅ ⋅ KISA ⋅ KrCERT
TTPs#9: Analyzing the attack strategy monitoring the daily life of individuals
Chinotto

2022-12-05 ⋅ Recorded Future ⋅ Insikt Group
Exposing TAG-53’s Credential Harvesting Infrastructure Used for Russia-Aligned Espionage Operations

2022-12-05 ⋅ Recorded Future ⋅ Insikt Group
Exposing TAG-53’s Credential Harvesting Infrastructure Used for Russia-Aligned Espionage Operations
Callisto

2022-12-05 ⋅ Human Rights Watch ⋅ Human Rights Watch
Iran: State-Backed Hacking of Activists, Journalists, Politicians

2022-12-05 ⋅ PWC ⋅ PWC
Blue Callisto orbits around US Laboratories in 2022
Callisto

2022-12-05 ⋅ Recorded Future ⋅ Recorded Future
Exposing TAG-53’s Credential Harvesting Infrastructure Used for Russia-Aligned Espionage Operations

2022-12-05 ⋅ Sekoia ⋅ sekoia, Threat & Detection Research Team
Calisto show interests into entities involved in Ukraine war support

2022-12-05 ⋅ Cybereason ⋅ Kotaro Ogino, Ralph Villanueva, Robin Plumer
Threat Analysis: MSI - Masquerading as a Software Installer
Magniber Matanbuchus QakBot

2022-12-03 ⋅ Github (kevoreilly) ⋅ Nikhil Hegde
Nighthawk DLL Payload Configuration Parser
Nighthawk

2022-12-03 ⋅ Microsoft ⋅ Cliff Watts
Preparing for a Russian cyber offensive against Ukraine this winter
CaddyWiper HermeticWiper Prestige

2022-12-02 ⋅ CrowdStrike ⋅ Tim Parisi
Not a SIMulation: CrowdStrike Investigations Reveal Intrusion Campaign Targeting Telco and BPO Companies

2022-12-02 ⋅ Palo Alto Networks Unit 42 ⋅ Bob Jung, Dominik Reichel, Esmid Idrizovic
Blowing Cobalt Strike Out of the Water With Memory Analysis
Cobalt Strike

2022-12-02 ⋅ K7 Security ⋅ Rahul R
KoiVM Loader Resurfaces With a Bang
KoiVM