Malpedia Library

Click here to download all references as Bib-File.•

2020-09-22 ⋅ Youtube (Virus Bulletin) ⋅ Ignacio Sanmillan
Ramsay: A cyber-espionage toolkit tailored for air-gapped networks
Ramsay

2020-09-14 ⋅ Trend Micro ⋅ Abraham Camba, Aprilyn Borja, Gilbert Sison, Jay Yaneza, Khristoffer Jocson, Ryan Maglaque
Analysis of a Convoluted Attack Chain Involving Ngrok

2020-09-11 ⋅ RSA Conference (YouTube) ⋅ Brook Chelmo
Two weeks with a Russian Ransomware Cell
HILDACRYPT

2020-08-28 ⋅ Proofpoint ⋅ Axel F, Proofpoint Threat Research Team
A Comprehensive Look at Emotet’s Summer 2020 Return
Emotet MUMMY SPIDER

2020-08-19 ⋅ SecurityLiterate ⋅ Kyle Cucci
Chantay’s Resume: Investigating a CV-Themed ZLoader Malware
Zloader

2020-07-28 ⋅ Trend Micro ⋅ Fernando Mercês
Mirai Botnet Exploit Weaponized to Attack IoT Devices via CVE-2020-5902
Mirai

2020-07-25 ⋅ HITBSecConf ⋅ Łukasz Siewierski
Zen: A Complex Campaign of Harmful Android Apps

2020-07-08 ⋅ Bitdefender ⋅ Bogdan Botezatu, Janos Gergo Szeles
Kingminer –a Crypto-Jacking Botnet Under the Scope
Kingminer

2020-07-07 ⋅ Sentinel LABS ⋅ Jason Reaves
Breaking EvilQuest | Reversing A Custom macOS Ransomware File Encryption Routine
EvilQuest

2020-06-25 ⋅ Elastic ⋅ Daniel Stepanic, Samir Bousseaden
A close look at the advanced techniques used in a Malaysian-focused APT campaign
DADSTACHE APT40

2020-06-18 ⋅ Juniper ⋅ Paul Kimayong
COVID-19 and FMLA Campaigns used to install new IcedID banking malware
IcedID

2020-06-17 ⋅ SentinelOne ⋅ Michael Myngerbayev
A Click from the Backyard | Analysis of CVE-2020-9332, a Vulnerable USB Redirection Software

2020-06-16 ⋅ Microsoft ⋅ Microsoft Threat Protection Intelligence Team
Exploiting a crisis: How cybercriminals behaved during the outbreak

2020-06-15 ⋅ VMWare Carbon Black ⋅ A C
TAU Threat Analysis: Relations to Hakbit Ransomware
Hakbit

2020-06-15 ⋅ Amnesty International ⋅ Amnesty International
India: Human Rights Defenders Targeted by a Coordinated Spyware Operation
NetWire RC

2020-06-08 ⋅ VMWare Carbon Black ⋅ A C
TAU Threat Analysis: Hakbit Ransomware
Hakbit

2020-06-01 ⋅ Lookout ⋅ Apurva Kumar, Christoph Hebeisen, Kristin Del Rosso
Mobile APT SurveillanceCampaigns Targeting Uyghurs A collection of long-running Android tooling connected to a Chinese mAPT actor
CarbonSteal DoubleAgent GoldenEagle SilkBean

2020-05-18 ⋅ Palo Alto Networks Unit 42 ⋅ Asher Davila, Yang Ji
Eleethub: A Cryptocurrency Mining Botnet with Rootkit for Self-Hiding
PerlBot

2020-05-14 ⋅ Trend Micro ⋅ Matthew Stewart
QNodeService: Node.js Trojan Spread via Covid-19 Lure
QNodeService

2020-05-13 ⋅ ESET Research ⋅ Ignacio Sanmillan
Ramsay: A cyber‑espionage toolkit tailored for air‑gapped networks
Ramsay Retro