Malpedia Library

Click here to download all references as Bib-File.•

2022-09-02 ⋅ Trend Micro ⋅ Nick Dai, Ted Lee, Vickie Su
Buzzing in the Background: BumbleBee, a New Modular Backdoor Evolved From BookWorm

2022-09-02 ⋅ nccgroup ⋅ Alberto Segura, Mike Stokkel
Sharkbot is back in Google Play
SharkBot

2022-09-01 ⋅ Medium michaelkoczwara ⋅ Michael Koczwara
Hunting C2/Adversaries Infrastructure with Shodan and Censys
Brute Ratel C4 Cobalt Strike Deimos GRUNT IcedID Merlin Meterpreter Nighthawk PoshC2 Sliver

2022-09-01 ⋅ [redacted] ⋅ Ben Armstrong, Brad Pittack, Danny Quist, Lauren Pearce
BianLian Ransomware Gang Gives It a Go!
BianLian BianLian

2022-09-01 ⋅ Sentinel LABS ⋅ Aleksandar Milenkoski, Amitai Ben Shushan Ehrlich, Juan Andrés Guerrero-Saade
The Mystery of Metador | An Unattributed Threat Hiding in Telcos, ISPs, and Universities

2022-09-01 ⋅ Trend Micro ⋅ Trend Micro
Ransomware Spotlight Black Basta
Black Basta Cobalt Strike MimiKatz QakBot

2022-09-01 ⋅ safebreach ⋅ Tomer Bar
SafeBreach Labs Researchers Uncover New Remote Access Trojan (RAT)

2022-09-01 ⋅ Zscaler ⋅ Atinderpal Singh, Brett Stone-Gross
No Honor Among Thieves - Prynt Stealer’s Backdoor Exposed
DarkEye Prynt Stealer WorldWind

2022-09-01 ⋅ muha2xmad ⋅ Muhammad Hasan Ali
Technical analysis of SOVA android malware
S.O.V.A.

2022-09-01 ⋅ IBM ⋅ Emmy Ebanks, Kevin Henson
Raspberry Robin and Dridex: Two Birds of a Feather
Dridex Raspberry Robin

2022-09-01 ⋅ Sentinel LABS ⋅ Amitai Ben Shushan Ehrlich
PyPI Phishing Campaign | JuiceLedger Threat Actor Pivots From Fake Apps to Supply Chain Attacks
JuiceLedger

2022-09-01 ⋅ abuse.ch ⋅ abuse.ch
New stealer in town
Erbium Stealer

2022-08-31 ⋅ Fourcore ⋅ Hardik Manocha
Ryuk Ransomware: History, Timeline, And Adversary Simulation
Ryuk

2022-08-31 ⋅ Bitdefender ⋅ Martin Zugec
Deep Dive into a Corporate Espionage Operation

2022-08-31 ⋅ SecurityScorecard ⋅ Alex Heid, Robert Ames, Ryan Slaney
Analysis of APT35 Infrastructure Reveals Interest in Egyptian Shipping Companies

2022-08-31 ⋅ Juniper ⋅ Paul Kimayong
Asbit: An Emerging Remote Desktop Trojan
Asbit

2022-08-31 ⋅ Intel 471 ⋅ Intel 471 Malware Intelligence team
ERMAC 2.0: Perfecting the Account Takeover
ERMAC

2022-08-31 ⋅ BitSight ⋅ André Tavares
Tracking PrivateLoader: Malware Distribution Service
PrivateLoader RedLine Stealer SmokeLoader

2022-08-30 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
Hacker Infrastructure Used in Cisco Breach Discovered Attacking a Top Workforce Management Corporation & an Affiliate of Russia’s Evil Corp Gang Suspected, Reports eSentire
Cobalt Strike FiveHands UNC2447

2022-08-30 ⋅ SecurityScorecard ⋅ Robert Ames
Brute Force Attempts May Have Preceded Ransomware Attack on School District