Malpedia Library

Click here to download all references as Bib-File.•

2023-03-24 ⋅ Kaspersky Labs ⋅ Kaspersky Lab ICS CERT
APT attacks on industrial organizations in H2 2022
Earth Longzhi Storm-0530 UNC3890

2023-03-24 ⋅ Microsoft ⋅ Microsoft Incident Response
Guidance for investigating attacks using CVE-2023-23397

2023-03-24 ⋅ loginsoft ⋅ Saharsh Agrawal
Aurora: The Dark Dawn and its Menacing Effects
Aurora Stealer

2023-03-24 ⋅ cocomelonc ⋅ cocomelonc
Malware AV/VM evasion - part 14: encrypt/decrypt payload via A5/1. Bypass Kaspersky AV. Simple C++ example.

2023-03-24 ⋅ Lab52 ⋅ peko
Bypassing Qakbot Anti-Analysis
QakBot

2023-03-23 ⋅ cyble ⋅ Cyble
Cinoshi Project and the Dark Side of Free MaaS
Cinoshi

2023-03-23 ⋅ Mandiant ⋅ Josh Fleischer, Rufus Brown, Ryan Tomcik
UNC961 in the Multiverse of Mandiant: Three Encounters with a Financially Motivated Threat Actor
HOLERUN LIGHTBUNNY Prophet Spider

2023-03-23 ⋅ Logpoint ⋅ Anish Bogati
Emerging Threats: AgentTesla – A Review and Detection Strategies
Agent Tesla

2023-03-23 ⋅ SentinelOne ⋅ Aleksandar Milenkoski, Joey Chen, Juan Andrés Guerrero-Saade, QGroup
Operation Tainted Love | Chinese APTs Target Telcos in New Attacks
mim221

2023-03-23 ⋅ Medium s2wlab ⋅ BLKSMTH, S2W TALON
Scarcruft Bolsters Arsenal for targeting individual Android devices
RambleOn RokRAT

2023-03-23 ⋅ Red Canary ⋅ Red Canary
2023 / 5.0 Threat Dection Report: Techniques, Trend, and Takeaways

2023-03-23 ⋅ ⋅ AhnLab ⋅ Vanish
Kimsuky group distributes malware disguised as a profile file (GitHub)

2023-03-22 ⋅ Atlantic Council ⋅ Simon Handler
The 5x5—Conflict in Ukraine’s information environment

2023-03-22 ⋅ Mandiant ⋅ Daniel Kapellmann Zafra, Keith Lunden, Nathan Brubaker
We (Did!) Start the Fire: Hacktivists Increasingly Claim Targeting of OT Systems

2023-03-22 ⋅ Intel 471 ⋅ Roberto Martinez, Taisiia Garkava
New loader on the bloc - AresLoader
AresLoader

2023-03-22 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Jaeson Schultz
Emotet Resumes Spam Operations, Switches to OneNote
Emotet

2023-03-21 ⋅ Kaspersky Labs ⋅ Georgy Kucherin, Igor Kuznetsov, Leonid Bezvershenko
Bad magic: new APT found in the area of Russo-Ukrainian conflict
PowerMagic CommonMagic RedStinger

2023-03-21 ⋅ Zscaler ⋅ Naveen Selvan, Sudeep Singh
The Unintentional Leak: A glimpse into the attack vectors of APT37
Chinotto

2023-03-21 ⋅ Twitter (@splinter_code) ⋅ Antonio Cocomazzi
Tweet on BlackByte ransomware rewrite in C++
BlackByte

2023-03-21 ⋅ Github (rivitna) ⋅ Andrey Zhdanov
BlackCat v3 Decryptor Scripts
BlackCat BlackCat