Malpedia Library

Click here to download all references as Bib-File.•

2024-11-18 ⋅ Logpoint ⋅ Anish Bogati
Exploring Strela Stealer: Initial Payload Analysis and Insights
StrelaStealer

2024-11-18 ⋅ Trend Micro ⋅ Feike Hacquebord, Fernando Mercês
Inside Water Barghests Rapid Exploit-to-Market Strategy for IoT Devices
Ngioweb

2024-11-17 ⋅ Alessio Di Santo, Luca Di Domenico
Post about Tsunami
tsunami

2024-11-17 ⋅ Intezer ⋅ Ryan Robinson
Babble Babble Babble Babble Babble Babble BabbleLoader

2024-11-15 ⋅ Information Security Buzz ⋅ Kirsten Doyle
Iranian “Dream Job” Cyber Campaign Targets Aerospace Sector
TA455

2024-11-15 ⋅ Volexity ⋅ Callum Roxan, Charlie Gardner, Paul Rascagnères
BrazenBamboo Weaponizes FortiClient Vulnerability to Steal VPN Credentials via DEEPDATA
lightSpy LIGHTSPY BH_A006 DEEPDATA DEEPPOST BrazenBamboo

2024-11-14 ⋅ EclecticIQ ⋅ EclecticIQ Threat Research Team
Inside Intelligence Center: Financially Motivated Chinese Threat Actor SilkSpecter Targeting Black Friday Shoppers
SilkSpecter

2024-11-14 ⋅ cyjax ⋅ Roman Faithfull
An elephant in Kairos: data-leak site emerges for new extortion group
Kairos

2024-11-14 ⋅ eSentire ⋅ eSentire
Bored BeaverTail & InvisibleFerret Yacht Club – A Lazarus Lure Pt.2
BeaverTail InvisibleFerret

2024-11-14 ⋅ Palo Alto ⋅ Unit 42
Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack
BeaverTail InvisibleFerret WageMole

2024-11-13 ⋅ ClearSky ⋅ ClearSky
New Zero-Day Vulnerability Detected: CVE-2024-43451
SparkRAT

2024-11-13 ⋅ ANY.RUN ⋅ Aaron Jornet Sales, ANY.RUN
HawkEye Malware: Technical Analysis
HawkEye Keylogger

2024-11-13 ⋅ Sekoia ⋅ Coline Chavane, Sekoia TDR
A three-beat waltz: The ecosystem behind Chinese state-sponsored cyber threats

2024-11-13 ⋅ TEHTRIS ⋅ TEHTRIS
Cracking Formbook malware: Blind deobfuscation and quick response techniques
Formbook

2024-11-13 ⋅ Bitdefender ⋅ Martin Zugec
ShrinkLocker (+Decryptor): From Friend to Foe, and Back Again
ShrinkLocker

2024-11-13 ⋅ ClearSky ⋅ ClearSky
CVE-2024-43451: A New Zero-Day Vulnerability Exploited in the wild
SparkRAT UAC-0194

2024-11-12 ⋅ ClearSky ⋅ ClearSky Research Team
Iranian “Dream Job” Campaign 11.24
TA455

2024-11-12 ⋅ Kroll ⋅ George Glass, Ryan Hicks
LUMMASTEALER Delivered Via PowerShell Social Engineering
Lumma Stealer

2024-11-12 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
LightSpy: APT41 Deploys Advanced DeepData Framework In Targeted Southern Asia Espionage Campaign
DEEPDATA

2024-11-12 ⋅ Recorded Future ⋅ Insikt Group
China-Nexus TAG-112 Compromises Tibetan Websites to Distribute Cobalt Strike
Cobalt Strike TAG-112