Malpedia Library

2022-06-08 ⋅ Qianxin Threat Intelligence Center ⋅ Red Raindrop Team
Operation Tejas: A dying elephant curled up in the Kunlun Mountains
HAZY TIGER RAZOR TIGER

2022-06-07 ⋅ McAfee ⋅ Jyothi Naveen, Kiran Raj
Phishing Campaigns featuring Ursnif Trojan on the Rise
ISFB

2022-06-07 ⋅ Lacework Labs ⋅ Chris Hall
Kinsing & Dark.IoT botnet among threats targeting CVE-2022-26134
Dark Kinsing

2022-06-07 ⋅ AdvIntel ⋅ Marley Smith, Vitali Kremez, Yelisey Boguslavskiy
BlackCat — In a Shifting Threat Landscape, It Helps to Land on Your Feet: Tech Dive
BlackCat BlackCat Cobalt Strike

2022-06-06 ⋅ Trend Micro ⋅ Trend Micro
Closing the Door: DeadBolt Ransomware Locks Out Vendors With Multitiered Extortion Scheme
DEADBOLT

2022-06-06 ⋅ SentinelOne ⋅ Niranjan Jayanand
From the Front Lines | Another Rebrand? Mindware and SFile Ransomware Technical Breakdown
Mindware Sfile

2022-06-06 ⋅ HP ⋅ Patrick Schläpfer
SVCReady: A New Loader Gets Ready
SVCReady

2022-06-06 ⋅ Trellix ⋅ Trelix
Growling Bears Make Thunderous Noise
Cobalt Strike HermeticWiper WhisperGate NB65

2022-06-06 ⋅ NCC Group ⋅ Peter Gurney, Ross Inman
Shining the Light on Black Basta
Black Basta

2022-06-05 ⋅ Dino Hacks ⋅ Niranjan Hegde
Loading GootLoader
GootLoader

2022-06-04 ⋅ bin.re ⋅ Johannes Bader
The Domain Generation Algorithms of SharkBot
SharkBot

2022-06-04 ⋅ kienmanowar Blog ⋅ m4n0w4r, Tran Trung Kien
[QuickNote] CobaltStrike SMB Beacon Analysis
Cobalt Strike

2022-06-03 ⋅ NetbyteSEC ⋅ Fareed
CVE-2022-30190 aka "Follina" MSDT: Advisory and Technical Analysis

2022-06-03 ⋅ Avast Decoded ⋅ Threat Intelligence Team
Outbreak of Follina in Australia
AsyncRAT APT40

2022-06-03 ⋅ Trustwave ⋅ Trustwave SpiderLabs
Trustwave's Action Response: Microsoft zero-day CVE-2022-30190 (aka Follina)

2022-06-03 ⋅ Avast ⋅ Threat Intelligence Team
Outbreak of Follina in Australia
AsyncRAT

2022-06-03 ⋅ AttackIQ ⋅ AttackIQ Adversary Research Team, Jackson Wells
Attack Graph Response to US CERT AA22-152A: Karakurt Data Extortion Group
Cobalt Strike MimiKatz

2022-06-02 ⋅ Packt ⋅ packtsecurity
A SecPro Super Issue: Understanding LockBit
LockBit LockBit BITWISE SPIDER

2022-06-02 ⋅ Kroll ⋅ Sean Straw
ModPipe POS Malware: New Hooking Targets Extract Card Data
ModPipe

2022-06-02 ⋅ Kaspersky Labs ⋅ GReAT
WinDealer dealing on the side
WinDealer Red Nue