Malpedia Library

2025-10-19 ⋅ MITRE ⋅ MITRE ATT&CK
Contagious Interview
Contagious Interview

2025-10-19 ⋅ Github (cocomelonc) ⋅ cocomelonc
Malware development trick 52: steal data via legit Slack API. Simple C example

2025-10-19 ⋅ ⋅ CNCERT ⋅ CNCERT
Technical Analysis Report on National Timing Center's National Security Agency Cyberattacks
DanderSpritz

2025-10-18 ⋅ Twitter (@ThreatrayLabs) ⋅ Threatray Labs
Tweet on Kimsuky activity with loaders delivering HttpSpy and HttpTroy
NikiTeaR

2025-10-18 ⋅ Koi Security ⋅ Idan Dardikman
GlassWorm: First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace
GlassWorm

2025-10-18 ⋅ Medium 0xzyadelzyat ⋅ Zyad Elzyat
PureLogs Stealer: Complete Malware Analysis & CTF Walkthrough
PureLogs Stealer

2025-10-16 ⋅ Qualys ⋅ Diksha Ojha
F5 BIG-IP Source Code Leaked in State-Linked Cyberattack (BRICKSTORM Malware)
BRICKSTORM

2025-10-16 ⋅ Trendmicro ⋅ Junestherry Dela Cruz
Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing
Lumma Stealer Water Kurita

2025-10-16 ⋅ Swisscom B2B CSIRT ⋅ Matthieu Gras, Swisscom B2B CSIRT
Swisscom TDR Intel Brief - Acreed: On-Chain C2 Evolution
ACR Stealer

2025-10-16 ⋅ Mandiant ⋅ Blas Kojusner, Joseph Dobson, Robert Wallace
DPRK Adopts EtherHiding: Nation-State Malware Hiding on Blockchains
JADESNOW UNC5342

2025-10-15 ⋅ Symantec ⋅ Threat Hunter Team
Jewelbug: Chinese APT Group Widens Reach to Russia
REF7707

2025-10-15 ⋅ Kaspersky ⋅ Noushin Shabab, Ye Jin
Mysterious Elephant: a growing threat
Remcos

2025-10-15 ⋅ NTT ⋅ Rintaro Koike
OtterCandy, malware used by WaterPlum
OtterCandy

2025-10-15 ⋅ Trend Micro ⋅ Dove Chiu, Lucien Chuang
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits

2025-10-14 ⋅ CIP ⋅ State Service of Special Communication and Information Protection of Ukraine (CIP)
Adversaries Target Ukrainian Defence Forces and Local Authorities Using "Counter-Sabotage" Lure
UAC-0239

2025-10-14 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
SOE-phisticated Persistence: Inside Flax Typhoon's ArcGIS Compromise

2025-10-14 ⋅ Gatewatcher ⋅ Gatewatcher, Gatewatcher's purple team
Data Breach: the operations of "Charming Kitten" revealed

2025-10-13 ⋅ ⋅ Logpresso ⋅ Hwang Min-kyung
[Threat Analysis] Lazarus Group Analyzes Malware for Windows and MacOS

2025-10-13 ⋅ NCSC UK ⋅ NCSC UK
Malware Analysis Report: RayInitiator & LINE VIPER

2025-10-13 ⋅ Proofpoint ⋅ Kyle Cucci, Proofpoint Threat Research Team, Selena Larson, Tommy Madjar
When the monster bytes: tracking TA585 and its arsenal
MonsterV2