Malpedia Library

Click here to download all references as Bib-File.•

2023-05-30 ⋅ IBM Security ⋅ IBM Security X-Force Team
BlackCat (ALPHV) ransomware levels up for stealth, speed and exfiltration
BlackCat BlackCat

2023-05-30 ⋅ Palo Alto Networks Unit 42 ⋅ Brad Duncan
Cold as Ice: Answers to Unit 42 Wireshark Quiz for IcedID
IcedID PhotoLoader

2023-05-30 ⋅ Trend Micro ⋅ Feike Hacquebord, Fernando Mercês, Lord Alfred Remorin, Stephen Hilt
Void Rabisu’s Use of RomCom Backdoor Shows a Growing Shift in Threat Actors’ Goals
ROMCOM RAT RomCom

2023-05-29 ⋅ kn0s-organization
BlackLotus stage 2 bootkit-rootkit analysis
BlackLotus

2023-05-29 ⋅ JPCERT/CC ⋅ Yuma Masabuchi
GobRAT malware written in Go language targeting Linux routers
GobRAT

2023-05-26 ⋅ enigmasoft ⋅ Mezo
Moneybird Ransomware
Pink Sandstorm

2023-05-26 ⋅ Trend Micro ⋅ Paul John Bardon, Sarah Pearl Camiling
New Info Stealer Bandit Stealer Targets Browsers, Wallets
Bandit Stealer

2023-05-26 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon)
Volt Typhoon

2023-05-26 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 30: Find PID via NtGetNextProcess. Simple C++ example.

2023-05-26 ⋅ ZAYOTEM ⋅ Emirhan KESKİN
Stop Ransomware
STOP

2023-05-26 ⋅ 0xToxin Labs ⋅ @0xToxin
Kraken - The Deep Sea Lurker Part 2
KrakenKeylogger

2023-05-25 ⋅ Hive Pro ⋅ Hive Pro
Pikabot A Stealthy Backdoor with Ingenious Evasion Tactics
Pikabot

2023-05-25 ⋅ YouTube (BSidesCharm) ⋅ Asheer Malhotra
it’s all Magic(RAT) – A look into recent North Korean nation-state attacks
MagicRAT VSingle YamaBot

2023-05-25 ⋅ Lab52 ⋅ Lab52
New tricks of APT29 – update on the CERT.PL report

2023-05-25 ⋅ cyble ⋅ Cyble, Cyble Research Labs
Invicta Stealer Spreading Through Phony GoDaddy Refund Invoices
Invicta Stealer

2023-05-25 ⋅ Mandiant ⋅ Corey Hildebrandt, Daniel Kapellmann Zafra, Keith Lunden, Ken Proska, Nathan Brubaker, Rushikesh Nandedkar
COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises
LIGHTWORK PIEHOP

2023-05-24 ⋅ Intezer ⋅ Nicole Fishbein
CryptoClippy is Evolving to Pilfer Even More Financial Data
CryptoClippy

2023-05-24 ⋅ cyble ⋅ Cyble
Notable DDoS Attack Tools and Services Supporting Hacktivist Operations in 2023
UserSec

2023-05-24 ⋅ BushidoToken Blog ⋅ BushidoToken
Unmasking Ransomware Using Stylometric Analysis: Shadow, 8BASE, Rancoz
8Base

2023-05-24 ⋅ Check Point Research ⋅ Jiri Vinopal, Marc Salinas Fernandez
Agrius Deploys MoneyBird in Targeted Attacks against Israeli Organizations
Pink Sandstorm