Malpedia Library

Click here to download all references as Bib-File.•

2022-05-31 ⋅ Uptycs ⋅ Pritam Salunkhe, Shilpesh Trivedi
WarzoneRAT Can Now Evade Detection With Process Hollowing
Ave Maria

2022-05-31 ⋅ Check Point Research ⋅ Alexey Bukhteyev, Raman Ladutska
XLoader Botnet: Find Me If You Can
Xloader

2022-05-30 ⋅ ⋅ NSFOCUS ⋅ NSFOCUS
Operation DarkCasino: In-Depth Analysis of Recent Attacks by APT Group EVILNUM
DarkMe

2022-05-30 ⋅ Matthieu Walter
Automatically Unpacking IcedID Stage 1 with Angr
IcedID

2022-05-28 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Clop ransomware gang is back, hits 21 victims in a single month
Clop

2022-05-27 ⋅ Kroll ⋅ Cole Manaster, Elio Biasiotto, George Glass
Emotet Analysis: New LNKs in the Infection Chain – The Monitor, Issue 20
Emotet

2022-05-27 ⋅ ⋅ PTSecurity ⋅ Aleksey Vishnyakov, Anton Belousov
How bootkits are implemented in modern firmware and how UEFI differs from Legacy BIOS
LoJax MoonBounce

2022-05-26 ⋅ Darktrace ⋅ DarkTrace
Worm-like propagation of Sysrv-hello crypto-jacking botnet: Network traffic analysis and latest TTPs
Sysrv-hello Sysrv-hello

2022-05-26 ⋅ Trustwave ⋅ Bernard Bautista
Grandoreiro Banking Malware Resurfaces for Tax Season
Grandoreiro

2022-05-26 ⋅ IBM ⋅ Dave McMillen, Kevin Henson
Black Basta Besting Your Network?
Black Basta

2022-05-25 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
SocGholish Campaigns and Initial Access Kit
FAKEUPDATES Blister Cobalt Strike NetSupportManager RAT

2022-05-25 ⋅ CrowdStrike ⋅ Jamie Harris
Hunting a Global Telecommunications Threat: DecisiveArchitect and Its Custom Implant JustForFun
BPFDoor

2022-05-25 ⋅ vmware ⋅ Oleg Boyarchuk, Stefano Ortolani
Emotet Config Redux
Emotet

2022-05-25 ⋅ cyble ⋅ Cyble Research Labs
ERMAC Back In Action: Latest Version Of Android Banking Trojan Targets Over 400 Applications
ERMAC

2022-05-25 ⋅ Reuters ⋅ Christopher Bing, James Pearson, Raphael Satter
Russian hackers are linked to new Brexit leak website, Google says

2022-05-24 ⋅ Malwarebytes ⋅ Threat Intelligence Team
Unknown APT group has targeted Russia repeatedly since Ukraine invasion
Sakula RAT

2022-05-24 ⋅ The Hacker News ⋅ Florian Goutin
Malware Analysis: Trickbot
Cobalt Strike Conti Ryuk TrickBot

2022-05-24 ⋅ Deep instinct ⋅ Bar Block
Blame the Messenger: 4 Types of Dropper Malware in Microsoft Office & How to Detect Them
Dridex Emotet

2022-05-24 ⋅ GBHackers on Security ⋅ Gurubaran S
Twisted Panda: Chinese APT Launch Spy Operation Against Russian Defence Institutes

2022-05-24 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Yashma Ransomware, Tracing the Chaos Family Tree
Chaos