Malpedia Library

Click here to download all references as Bib-File.•

2022-04-18 ⋅ CISA ⋅ CISA, FBI, U.S. Department of the Treasury
AA22-108A: TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies (PDF)
FastCash Bankshot

2022-04-18 ⋅ SentinelOne ⋅ James Haughom
From the Front Lines | Peering into A PYSA Ransomware Attack
Chisel Chisel Cobalt Strike Mespinoza

2022-04-18 ⋅ Nozomi Networks ⋅ Nozomi Networks Labs
New BotenaGo Variant Discovered by Nozomi Networks Labs
BotenaGo

2022-04-18 ⋅ ⋅ ASEC ⋅ ASEC Analysis Team
A new type of malware from the Lazarus attack group that exploits the INITECH process.

2022-04-17 ⋅ Malwarology ⋅ Gaetano Pellegrino
Qakbot Series: API Hashing
QakBot

2022-04-17 ⋅ Malcat ⋅ malcat team
Reversing a NSIS dropper using quick and dirty shellcode emulation
Loki Password Stealer (PWS)

2022-04-17 ⋅ BushidoToken Blog ⋅ BushidoToken
Lessons from the Conti Leaks
BazarBackdoor Conti Emotet IcedID Ryuk TrickBot

2022-04-16 ⋅ Malwarology ⋅ Gaetano Pellegrino
Qakbot Series: Process Injection
QakBot

2022-04-15 ⋅ Trustwave ⋅ Radoslaw Zdonczyk
Tough Times for Ukrainian Honeypot?
Mirai

2022-04-15 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Karakurt revealed as data extortion arm of Conti cybercrime syndicate
Anchor BazarBackdoor Conti TrickBot

2022-04-15 ⋅ Arctic Wolf ⋅ Arctic Wolf
The Karakurt Web: Threat Intel and Blockchain Analysis Reveals Extension of Conti Business Model
Conti Diavol Ryuk TrickBot

2022-04-15 ⋅ splunk ⋅ Splunk Threat Research Team
STRT-TA03 CPE - Destructive Software
AcidRain CyclopsBlink

2022-04-15 ⋅ Accenture ⋅ Accenture
Global Incident Report: Russia-Ukraine Crisis

2022-04-15 ⋅ SpiderLabs Blog ⋅ Radoslaw Zdonczyk
Tough Times for Ukrainian Honeypot?
Mirai

2022-04-14 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Vanja Svajcer
"Haskers Gang" Introduces New ZingoStealer
Ginzo Stealer ZingoStealer

2022-04-14 ⋅ SCADAfence ⋅ Maayan Fishelov
Industroyer2: ICS Networks need to heighten vigilance - SCADAfence
INDUSTROYER2

2022-04-14 ⋅ Claroty ⋅ Uri Katz
Blinding Snort: Breaking The Modbus OT Preprocessor

2022-04-14 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyberattack on Ukrainian state organizations using IcedID malware (CERT-UA#4464)
IcedID

2022-04-14 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: HeaderTip Backdoor Shows Attackers from China Preying on Ukraine
HeaderTip

2022-04-14 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Michael Chen, Vanja Svajcer
Threat Spotlight: "Haskers Gang" Introduces New ZingoStealer
RedLine Stealer