Malpedia Library

Click here to download all references as Bib-File.•

2025-03-13 ⋅ Cyfirma ⋅ cyfirma
Tracking Ransomware: February 2025
LinkC Pub

2025-03-13 ⋅ Infoblox ⋅ Jason Hill
Work Hard, Pay Harder!

2025-03-13 ⋅ Tinyhack.com ⋅ tinyhack
Decrypting Encrypted files from Akira Ransomware (Linux/ESXI variant 2024) using a bunch of GPUs
Akira

2025-03-13 ⋅ Group-IB ⋅ Group-IB
ClickFix: The Social Engineering Technique Hackers Use to Manipulate Victims
Emmenhtal Lumma Stealer

2025-03-13 ⋅ Linkedin (ThreatMon) ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
Chrome DLL Manipulation Attack Exposed

2025-03-13 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
ArechClient; Decoding IOCs and finding the onboard browser extension
SectopRAT

2025-03-12 ⋅ cocomelonc ⋅ cocomelonc
Malware development: persistence - part 27. Scheduled Tasks. Simple C example.

2025-03-12 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Golang backdoor with a side of ChromeUpdateAlert App

2025-03-12 ⋅ Youtube (AhmedS Kasmani) ⋅ AhmedS Kasmani
Initial Analysis of Black Basta Chat Leaks
Black Basta Black Basta

2025-03-12 ⋅ YouTube (John Hammond) ⋅ John Hammond
LEAKED Russian Hackers Internal Chats
Black Basta Black Basta

2025-03-12 ⋅ CISA ⋅ CISA, FBI, MS-ISAC
Medusa Ransomware

2025-03-12 ⋅ Red Canary ⋅ Red Canary
2025 Threat Detection Report
HijackLoader Lumma Stealer NetSupportManager RAT

2025-03-12 ⋅ Mandiant ⋅ Frank Tse, Jakub Jozwiak, Logeswaran Nadarajan, Lukasz Lamparski, Mathew Potaczek, Mustafa Nasser, Nick Harbour, Punsaen Boonyakarn, Shawn Chew
Ghost in the Router: China-Nexus Espionage Actor UNC3886 Targets Juniper Routers
tsh

2025-03-12 ⋅ Lookout ⋅ Lookout
Lookout Discovers New Spyware by North Korean APT37
KoSpy

2025-03-11 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Twitter Thread about PipeMagic
PipeMagic

2025-03-11 ⋅ Cato Networks ⋅ Matan Mittleman, Ofek Vardi
Cato CTRL Threat Research: Ballista – New IoT Botnet Targeting Thousands of TP-Link Archer Routers
Ballista

2025-03-11 ⋅ Hunt.io ⋅ Hunt.io
JSPSpy and ‘filebroser’: A Custom File Management Tool in Webshell Infrastructure

2025-03-11 ⋅ Juniper Networks ⋅ Cybersecurity R&D
The RedPenguin Malware Incident
tsh

2025-03-11 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks
AsyncRAT NjRAT Quasar RAT Remcos

2025-03-11 ⋅ Trend Micro ⋅ Cj Arsley Mateo, Darrel Tristan Virtusio, Jacob Santos, Junestherry Dela Cruz, Paul John Bardon
AI-Assisted Fake GitHub Repositories Fuel SmartLoader and LummaStealer Distribution
Lumma Stealer SmartLoader