Malpedia Library

Click here to download all references as Bib-File.•

2023-03-14 ⋅ Google ⋅ Benoit Sevens
Magniber ransomware actors used a variant of Microsoft SmartScreen bypass
Magniber

2023-03-14 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
NOBELIUM Uses Poland's Ambassador’s Visit to the U.S. to Target EU Governments Assisting Ukraine
EnvyScout GraphicalNeutrino

2023-03-13 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center
DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit

2023-03-13 ⋅ SentinelOne ⋅ Jim Walter
CatB Ransomware | File Locker Sharpens Its Claws to Steal Data with MSDTC Service DLL Hijacking
CatB

2023-03-13 ⋅ ThreatMon ⋅ ThreatMon Malware Research Team
Beyond Bullets and Bombs: An Examination of Armageddon Group’s Cyber Warfare Against Ukraine
Unidentified 003 (Gamaredon Downloader) Unidentified VBS 005 (Telegram Loader) Unidentified VBS 006 (Telegram Loader) Pteranodon

2023-03-13 ⋅ Trendmicro ⋅ Ian Kenefick
Emotet Returns, Now Adopts Binary Padding for Evasion
Emotet

2023-03-12 ⋅ Luca Mella
Makop: The Toolkit of a Criminal Gang
Makop Ransomware

2023-03-11 ⋅ Zainware labs ⋅ ZainWare
Analyzing GuLoader
CloudEyE

2023-03-10 ⋅ ⋅ HAURI ⋅ HAURI
[Press Release] Beware of malicious code infection impersonating a national advisory organization

2023-03-10 ⋅ Mrtiepolo ⋅ Gianluca Tiepolo
Sophisticated APT29 Campaign Abuses Notion API to Target the European Commission
BEATDROP EnvyScout GraphicalNeutrino tDiscoverer VaporRage

2023-03-10 ⋅ Security0wnage ⋅ Security0wnage
How Do You Like Dem Eggs? I like Mine Scrambled, Really Scrambled - A Look at Recent more_eggs Samples
More_eggs

2023-03-10 ⋅ ThreatFabric ⋅ ThreatFabric
Xenomorph v3: a new variant with ATS targeting more than 400 institutions
Xenomorph

2023-03-10 ⋅ The Register ⋅ Jessica Lyons Hardcastle
FBI and international cops catch a NetWire RAT
NetWire RC

2023-03-10 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
From Royal With Love
Cobalt Strike Conti PLAY Royal Ransom Somnia

2023-03-09 ⋅ Secureworks ⋅ SecureWorks
Learning from Incident Response: 2022 Year in Review
GOLD REBELLION

2023-03-09 ⋅ Sentinel LABS ⋅ SentinelLabs
IceFire Ransomware Returns | Now Targeting Linux Enterprise Networks
iceFire

2023-03-09 ⋅ X (@suyog41) ⋅ Yogesh Londhe
Tweet on Cinoshi Setaler
Cinoshi

2023-03-09 ⋅ Mandiant ⋅ Mandiant Intelligence
Stealing the LIGHTSHOW (Part Two) — LIGHTSHIFT and LIGHTSHOW
FudModule

2023-03-09 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
BatLoader Continues to Abuse Google Search Ads to Deliver Vidar Stealer and Ursnif
BATLOADER ISFB Vidar

2023-03-09 ⋅ Talos Intelligence ⋅ Andrew Windsor, Vanja Svajcer
Prometei botnet improves modules and exhibits new capabilities in recent updates
Prometei