Malpedia Library

Click here to download all references as Bib-File.•

2019-10-20 ⋅ McAfee ⋅ Christiaan Beek, Jessica Saavedra-Morales, Ryan Sherstobitoff
McAfee ATR Analyzes Sodinokibi aka REvil Ransomware-as-a-Service – Crescendo
REvil

2019-10-16 ⋅ RiskIQ ⋅ John Omernik
LNKR: More than Just a Browser Extension
LNKR

2019-09-12 ⋅ Zscaler ⋅ Rohit Chaturvedi, Sahil Antil
InnfiRAT: A new RAT aiming for your cryptocurrency and more
win.innfirat

2019-08-29 ⋅ Security Intelligence ⋅ Joey Victorino, Kevin Henson, Melissa Frydrych, Ole Villadsen
More_eggs, Anyone? Threat Actor ITG08 Strikes Again
More_eggs FIN6

2019-08-26 ⋅ InQuest ⋅ Josiah Smith
Memory Analysis of TrickBot
TrickBot

2019-07-16 ⋅ G Data ⋅ G DATA Security Lab
Analysis: Server-side polymorphism & PowerShell backdoors
Rozena

2019-07-16 ⋅ enSilo ⋅ Chen Erlich
The Avast Abuser: Metamorfo Banking Malware Hides By Abusing Avast Executable
Metamorfo

2019-07-15 ⋅ Blackberry ⋅ Blackberry Research
Threat Spotlight: Virlock Polymorphic Ransomware
VirLock

2019-06-25 ⋅ MyOnlineSecurity ⋅ MyOnlineSecurity
More AgentTesla keylogger and Nanocore RAT in one bundle
Houdini

2019-06-10 ⋅ Trend Micro ⋅ Daniel Lunghi, Jaromír Hořejší
New MuddyWater Activities Uncovered: Threat Actors Used Multi-Stage Backdoors, New Post-Exploitation Tools, Android Malware, and More
Mudwater SHARPSTATS

2019-06-03 ⋅ Brian Krebs
Report: No ‘Eternal Blue’ Exploit Found in Baltimore City Ransomware
RobinHood

2019-05-31 ⋅ Youtube (0verfl0w_) ⋅ 0verfl0w_
Defeating Commercial and Custom Packers like a Pro - VMProtect, ASPack, PECompact, and more
FlawedAmmyy Ramnit

2019-05-16 ⋅ SecurityIntelligence ⋅ Limor Kessem
GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation
Nymaim

2019-05-15 ⋅ Chronicle ⋅ Juan Andrés Guerrero-Saade, Silas Cutler
Winnti: More than just Windows and Gates
Winnti APT41

2019-05-13 ⋅ Morphisec ⋅ Arnold Osipov
A Look At Hworm / Houdini aka Njrat
Houdini

2019-05-09 ⋅ Proofpoint ⋅ Dennis Schwarz, Proofpoint Threat Insight Team
New KPOT v2.0 stealer brings zero persistence and in-memory features to silently steal credentials
KPOT Stealer

2019-05-08 ⋅ Kaspersky Labs ⋅ Kaspersky Labs
Fin7 hacking group targets more than 130 companies after leaders’ arrest
Ave Maria ANTHROPOID SPIDER

2019-05-08 ⋅ VMRay ⋅ Francis Montesino
Get Smart with Enhanced Memory Dumping in VMRay Analyzer 3.0
Remcos

2019-05-08 ⋅ Ars Technica ⋅ Sean Gallagher
“RobbinHood” ransomware takes down Baltimore City government networks
RobinHood

2019-04-11 ⋅ Reaqta ⋅ Reaqta
Ave_Maria Malware: there's more than meets the eye
Ave Maria