Malpedia Library

Click here to download all references as Bib-File.•

2022-03-29 ⋅ Symantec ⋅ Threat Hunter Team
Verblecon: Sophisticated New Loader Used in Low-level Attacks
Verblecon

2022-03-29 ⋅ Cisco Talos ⋅ Asheer Malhotra, Justin Thattil, Kendall McKay
Transparent Tribe campaign uses new bespoke malware to target Indian government officials
Crimson RAT

2022-03-29 ⋅ The Hacker News ⋅ Ravie Lakshmanan
A Large-Scale Supply Chain Attack Distributed Over 800 Malicious NPM Packages

2022-03-29 ⋅ ⋅ NCSC Switzerland ⋅ NCSC Switzerland
Woche 12: Schadsoftware «FluBot» in der Schweiz wieder aktiv und Web-Administratoren erhalten Drohmails von angeblich ukrainischen Hackern
FluBot

2022-03-28 ⋅ Netzpolitik.org ⋅ Andre Meister
Staatstrojaner-Hersteller FinFisher „ist geschlossen und bleibt es auch“
FinFisher RAT

2022-03-28 ⋅ Cloudsek ⋅ Anandeshwar Unnikrishnan, Gursehaj Singh
Malicious Macros and Zone Identifier Alternate Data Stream Information Bypass

2022-03-28 ⋅ Avast ⋅ Threat Intelligence Team
Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool
Unidentified 091

2022-03-28 ⋅ Intezer ⋅ Joakim Kennedy, Ryan Robinson
New Conversation Hijacking Campaign Delivering IcedID
IcedID PhotoLoader

2022-03-28 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0056 cyberattack on Ukrainian state authorities using GraphSteel and GrimPlant malware (CERT-UA#4293)
GraphSteel GrimPlant SaintBear

2022-03-28 ⋅ Mandiant ⋅ Brandon Wilbur, Dallin Warne, Geoff Ackerman, James Maclachlan, John Wolfram, Tufail Ahmed
Forged in Fire: A Survey of MobileIron Log4Shell Exploitation
KEYPLUG

2022-03-28 ⋅ Bleeping Computer ⋅ Bill Toulas
Microsoft Exchange targeted for IcedID reply-chain hijacking attacks
IcedID

2022-03-28 ⋅ splunk ⋅ Splunk Threat Research Team
Threat Update DoubleZero Destructor
DoubleZero

2022-03-28 ⋅ The Hacker News ⋅ Ravie Lakshmanan
'Purple Fox' Hackers Spotted Using New Variant of FatalRAT in Recent Malware Attacks
DirtyMoe FatalRat PurpleFox

2022-03-28 ⋅ Minerva Labs ⋅ Natalie Zargarov
SunCrypt Ransomware Gains New Capabilities in 2022
SunCrypt

2022-03-27 ⋅ cocomelonc
Conti ransomware source code investigation - part 1
Conti

2022-03-27 ⋅ Medium M3H51N ⋅ M3H51N
Malware Analysis — NanoCore Rat
Nanocore RAT

2022-03-25 ⋅ Trustwave ⋅ Trustwave SpiderLabs
Cyber Attackers Leverage Russia-Ukraine Conflict in Multiple Spam Campaigns
Remcos

2022-03-25 ⋅ GOV.UA ⋅ State Service of Special Communication and Information Protection of Ukraine (CIP)
Who is behind the Cyberattacks on Ukraine's Critical Information Infrastructure: Statistics for March 15-22
Xloader Agent Tesla CaddyWiper Cobalt Strike DoubleZero GraphSteel GrimPlant HeaderTip HermeticWiper IsaacWiper MicroBackdoor Pandora RAT

2022-03-25 ⋅ Github (@swagkarna)
Rafel Rat GitHub repository
Rafel RAT

2022-03-25 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Raccoon Stealer malware suspends operations due to war in Ukraine
Raccoon