Malpedia Library

2021-05-20 ⋅ lacework ⋅ Chris Hall, Jared Stroud, Tom Hegel
8220 Gangs Recent use of Custom Miner and Botnet

2021-05-18 ⋅ Elliptic ⋅ Tom Robinson
DarkSide Ransomware has Netted Over $90 million in Bitcoin
DarkSide DarkSide

2021-05-14 ⋅ Elliptic ⋅ Dr. Tom Robinson
Elliptic Follows the Bitcoin Ransoms Paid by Colonial Pipeline and Other DarkSide Ransomware Victims
DarkSide DarkSide

2021-05-12 ⋅ Zero Day ⋅ Kim Zetter
Anatomy of a $2 Million Darkside Ransomware Breach
DarkSide

2021-05-11 ⋅ Dragos ⋅ Mike Hoffman, Tom Winston
Recommendations Following the Colonial Pipeline Cyber Attack
DarkSide

2021-05-10 ⋅ SentinelOne ⋅ SentinelOne
Meet DarkSide and Their Ransomware – SentinelOne Customers Protected
DarkSide

2021-05-08 ⋅ The Record ⋅ Catalin Cimpanu
SolarWinds says fewer than 100 customers were impacted by supply chain attack
SUNBURST

2021-05-06 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Cris Tomboc, Jayson Chong, Nikki Madayag, Sean Torre
Proxylogon: A Coinminer, a Ransomware, and a Botnet Join the Party
BlackKingdom Ransomware CHINACHOPPER Lemon Duck Prometei

2021-05-05 ⋅ Zscaler ⋅ Aniruddha Dolas, Manohar Ghule, Mohd Sadique
Catching RATs Over Custom Protocols Analysis of top non-HTTP/S threats
Agent Tesla AsyncRAT Crimson RAT CyberGate Ghost RAT Nanocore RAT NetWire RC NjRAT Quasar RAT Remcos

2021-04-26 ⋅ nviso ⋅ Maxime Thiebaut
Anatomy of Cobalt Strike’s DLL Stager
Cobalt Strike

2021-04-24 ⋅ fumik0 blog ⋅ fumko
Anatomy of a simple and popular packer

2021-04-21 ⋅ Reuters ⋅ Joseph Menn, Raphael Satter
Codecov hackers breached hundreds of restricted customer sites - sources

2021-04-19 ⋅ Washington Examiner ⋅ Tom Rogan
Inside the CIA and NSA disagreement over Russian bounties story

2021-04-17 ⋅ YouTube (Worcester DEFCON Group) ⋅ Joel Snape, Nettitude
Inside IcedID: Anatomy Of An Infostealer
IcedID