Malpedia Library

Click here to download all references as Bib-File.•

2022-09-22 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Analysis Report on Lazarus Group's Rootkit Attack Using BYOVD
FudModule

2022-09-22 ⋅ Microsoft ⋅ Microsoft 365 Defender Research Team
Malicious OAuth applications used to compromise email servers and spread spam

2022-09-22 ⋅ Broadcom ⋅ Symantec Threat Hunter Team
Noberus Ransomware: Darkside and BlackMatter Successor Continues to Evolve its Tactics
BlackCat BlackMatter DarkSide

2022-09-21 ⋅ Microsoft ⋅ Abhishek Pustakala, Harshita Tripathi, Microsoft 365 Defender Research Team, Shivang Desai
Rewards plus: Fake mobile banking rewards apps lure users to install info-stealing RAT on Android devices

2022-09-21 ⋅ Microsoft ⋅ Microsoft Detection and Response Team (DART), Microsoft Security Experts
The art and science behind Microsoft threat hunting: Part 2

2022-09-15 ⋅ DuskRise ⋅ Cluster25 Threat Intel Team
Erbium InfoStealer Enters the Scene: Characteristics and Origins
Erbium Stealer

2022-09-15 ⋅ Symantec ⋅ Threat Hunter Team
Webworm: Espionage Attackers Testing and Using Older Modified RATs
9002 RAT Ghost RAT Trochilus RAT

2022-09-15 ⋅ Aquasec ⋅ Asaf Eitani, Assaf Morag
Threat Alert: New Malware in the Cloud By TeamTNT
Tsunami

2022-09-15 ⋅ Sekoia ⋅ Threat & Detection Research Team
PrivateLoader: the loader of the prevalent ruzki PPI service
Agent Tesla Coinminer DanaBot DCRat Eternity Stealer Glupteba Mars Stealer NetSupportManager RAT Nymaim Nymaim2 Phoenix Keylogger PrivateLoader Raccoon RedLine Stealer SmokeLoader Socelars STOP Vidar YTStealer

2022-09-14 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Opsec Mistakes Reveal COBALT MIRAGE Threat Actors
TUNNELFISH

2022-09-13 ⋅ Symantec ⋅ Threat Hunter Team
New Wave of Espionage Activity Targets Asian Governments
MimiKatz PlugX Quasar RAT ShadowPad Trochilus RAT

2022-09-13 ⋅ Sansec Threat Research ⋅ Sansec Threat Research Team
Magento vendor Fishpig hacked, backdoors added
Rekoobe

2022-09-12 ⋅ Trend Micro ⋅ Nitesh Surana
Security Breaks: TeamTNT’s DockerHub Credentials Leak

2022-09-12 ⋅ Arctic Wolf ⋅ Alex Ammons, Arctic Wolf Labs Team, Markus Neis, Ross Phillips, Steven Campbell, Teresa Whitmore
Chiseling In: Lorenz Ransomware Group Cracks MiVoice And Calls Back For Free
Chisel Lorenz

2022-09-08 ⋅ Microsoft ⋅ Microsoft Detection and Response Team (DART), Microsoft Security Experts
The art and science behind Microsoft threat hunting: Part 1

2022-09-08 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
BRONZE PRESIDENT Targets Government Officials
PlugX

2022-09-05 ⋅ Team Cymru ⋅ S2 Research Team
Mythic Case Study: Assessing Common Offensive Security Tools

2022-08-31 ⋅ Intel 471 ⋅ Intel 471 Malware Intelligence team
ERMAC 2.0: Perfecting the Account Takeover
ERMAC

2022-08-29 ⋅ Sekoia ⋅ Livia Tibirna, Quentin Bourgue, Threat & Detection Research Team
Traffers: a deep dive into the information stealer ecosystem
MetaStealer PrivateLoader Raccoon RedLine Stealer Vidar

2022-08-25 ⋅ splunk ⋅ Splunk Threat Research Team
AppLocker Rules as Defense Evasion: Complete Analysis
Azorult