Malpedia Library

Click here to download all references as Bib-File.•

2023-01-24 ⋅ eSentire ⋅ Joe Stewart, Keegan Keplinger
Unmasking Venom Spider
More_eggs TerraPreter TerraLoader VenomLNK

2023-01-24 ⋅ DailySecU ⋅ Gil Min-kwon
[Urgent] A Chinese hacker organization that declared hacking war on Korea..."KISA will hack" notice

2023-01-23 ⋅ zero day initiative ⋅ Simon Zuckerbraun
Activation Context Cache Poisoning: Exploiting CSRSS for Privilege Escalation
Denim Tsunami

2023-01-23 ⋅ Medium System Weakness ⋅ Lena (LambdaMamba)
A "strange font" Smishing Campaign that changes behaviour based on User-Agent, and abuses Duck DNS
Roaming Mantis

2023-01-23 ⋅ Kroll ⋅ Elio Biasiotto, Stephen Green
Black Basta – Technical Analysis
Black Basta Cobalt Strike MimiKatz QakBot SystemBC

2023-01-23 ⋅ Uptycs ⋅ Karthickkumar Kathiresan, Shilpesh Trivedi
The Titan Stealer: Notorious Telegram Malware Campaign - Uptycs
TitanStealer

2023-01-23 ⋅ FBI ⋅ FBI National Press Office
FBI Confirms Lazarus Group Cyber Actors Responsible for Harmony's Horizon Bridge Currency Theft

2023-01-22 ⋅ Lookout ⋅ Alemdar Islamoglu, Justin Albrecht, Kristina Balaam, Ruohan Xiong
BadBazaar: iOS and Android Surveillanceware by China’s APT15 Used to Target Tibetans and Uyghurs
badbazaar

2023-01-20 ⋅ The Record ⋅ Jonathan Greig
Samsung investigating claims of hack on South Korea systems, internal employee platform
Xiaoqiying

2023-01-20 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Emotet Returns With New Methods of Evasion
Emotet IcedID

2023-01-20 ⋅ cocomelonc ⋅ cocomelonc
Malware development: persistence - part 21. Recycle Bin, My Documents COM extension handler. Simple C++ example.

2023-01-20 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Chinese Hackers Exploited Recent Fortinet Flaw as 0-Day to Drop Malware
BOLDMOVE BOLDMOVE

2023-01-19 ⋅ Emerging Threats ⋅ Isaac O'Shaughnessy
Vidar Stealer Picks Up Steam!
Vidar

2023-01-19 ⋅ Cisco ⋅ Guilherme Venere
Following the LNK metadata trail
BumbleBee PhotoLoader QakBot

2023-01-19 ⋅ cyble ⋅ Cyble
Gigabud RAT: New Android RAT Masquerading as Government Agencies
Gigabud

2023-01-19 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Gamaredon (Ab)uses Telegram to Target Ukrainian Organizations
Unidentified VBS 006 (Telegram Loader)

2023-01-19 ⋅ Mandiant ⋅ Cristiana Kittner, Mark Lechtik, Sarah Hawley, Scott Henderson
Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475)
BOLDMOVE BOLDMOVE

2023-01-19 ⋅ Team Cymru ⋅ S2 Research Team
Darth Vidar: The Dark Side of Evolving Threat Infrastructure
Vidar

2023-01-19 ⋅ Kaspersky Labs ⋅ GReAT
Roaming Mantis implements new DNS changer in its malicious mobile app in 2022
MoqHao

2023-01-19 ⋅ ThreatFabric ⋅ ThreatFabric
Hook: a new Ermac fork with RAT capabilities
Hook