Malpedia Library

Click here to download all references as Bib-File.•

2022-11-15 ⋅ README_SYNACK ⋅ Cynthia Brumfield
Cybercrime is more of a threat than nation-state hackers
Storm-0829

2022-11-15 ⋅ SOC Prime ⋅ Veronika Telychko
Somnia Malware Detection: UAC-0118 aka FRwL Launches Cyber Attacks Against Organizations in Ukraine Using Enhanced Malware Strains
Cobalt Strike Vidar UAC-0118

2022-11-15 ⋅ SpixNet ⋅ SpixNet
Russian hacktivists hit Ukrainian orgs with ransomware – but no ransom demands
UAC-0118

2022-11-15 ⋅ NK News ⋅ Ethan Jewell
North Korean hackers targeted Ukraine as it fought off Russia’s invasion: Report

2022-11-15 ⋅ Fortinet ⋅ Joie Salvio, Roy Tay
New RapperBot Campaign – We Know What You Bruting for this Time
RapperBot

2022-11-15 ⋅ Trellix ⋅ Max Kersten
Wipermania: An All You Can Wipe Buffet
dnWipe NominatusToxicBattery

2022-11-15 ⋅ Kaspersky Labs ⋅ Jornt van der Wiel, Konstantin Zykov
DTrack activity targeting Europe and Latin America
Dtrack

2022-11-15 ⋅ Symantec ⋅ Threat Hunter Team
Billbug: State-sponsored Actor Targets Cert Authority, Government Agencies in Multiple Asian Countries
Sagerunex

2022-11-14 ⋅ vmware ⋅ Bethany Hardin, Deborah Snyder, Lavine Oluoch, Nikki Benoit, Tatiana Vollbrecht
BATLOADER: The Evasive Downloader Malware
BATLOADER

2022-11-14 ⋅ Twitter (@embee_research) ⋅ Matthew
Twitter thread on Yara Signatures for Qakbot Encryption Routines
IcedID QakBot

2022-11-14 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Operation (Đường chín đoạn) typhoon: the cyber sea lotus coveting the nine-dash line in the South China Sea
Caja

2022-11-11 ⋅ Codesec ⋅ Hugo Caron
GraceWire / FlawedGrace malware adventure
FlawedGrace

2022-11-11 ⋅ AhnLab ⋅ ASEC
Magniber Ransomware Attempts to Bypass MOTW (Mark of the Web)
Magniber

2022-11-10 ⋅ Zscaler ⋅ ThreatLabZ research team
Rise of Banking Trojan Dropper in Google Play
Xenomorph

2022-11-10 ⋅ Fortinet ⋅ James Slaughter, Shunichi Imano
Ransomware Roundup: New Inlock and Xorist Variants
Inlock Xorist

2022-11-10 ⋅ Intezer ⋅ Nicole Fishbein
How LNK Files Are Abused by Threat Actors
BumbleBee Emotet Mount Locker QakBot

2022-11-10 ⋅ AhnLab ⋅ ASEC
Penetration and Distribution Method of Gwisin Attacker
Gwisin

2022-11-09 ⋅ Trend Micro ⋅ Hara Hiroaki, Ted Lee
Hack the Real Box: APT41’s New Subgroup Earth Longzhi
Cobalt Strike MimiKatz Earth Longzhi

2022-11-09 ⋅ Netskope ⋅ Gustavo Palazolo
BlackCat Ransomware: Tactics and Techniques From a Targeted Attack
BlackCat ExMatter

2022-11-09 ⋅ Cisco Talos ⋅ Edmund Brumaghin
Threat Spotlight: Cyber Criminal Adoption of IPFS for Phishing, Malware Campaigns
Agent Tesla