Malpedia Library

Click here to download all references as Bib-File.•

2023-02-16 ⋅ Trend Micro ⋅ Hara Hiroaki, Masaoki Shoji, Yuka Higashi
Invitation to a Secret Event: Uncovering Earth Yako’s Campaigns
MirrorKey TransBox Earth Yako

2023-02-16 ⋅ Check Point Research ⋅ Check Point Research, Checkpoint
Operation Silent Watch: Desktop Surveillance in Azerbaijan and Armenia
OxtaRAT

2023-02-16 ⋅ Google ⋅ Shane Huntley
Fog of war: how the Ukraine conflict transformed the cyber threat landscape
APT28 Ghostwriter SaintBear Sandworm Turla

2023-02-15 ⋅ The Record ⋅ Daryna Antoniuk
Scandinavian Airlines hit by cyberattack, ‘Anonymous Sudan’ claims responsibility
UserSec

2023-02-15 ⋅ CERT-EU ⋅ CERT-EU, ENISA
JP-23-01 - Sustained activity by specific threat actors

2023-02-15 ⋅ AhnLab ⋅ ASEC
Paradise Ransomware Distributed Through AweSun Vulnerability Exploitation
Paradise

2023-02-15 ⋅ Google ⋅ Google Threat Analysis Group, Mandiant
Fog of War: How the Ukraine Conflict Transformed the Cyber Threat Landscape
CaddyWiper Dharma HermeticWiper INDUSTROYER2 PartyTicket WhisperGate Callisto Curious Gorge MUSTANG PANDA Turla

2023-02-15 ⋅ ⋅ AhnLab ⋅ eastston
Distributed Malware Exploiting Vulnerable Innorix: Andariel
Andardoor

2023-02-15 ⋅ SentinelOne ⋅ Jim Walter
Recent TZW Campaigns Revealed As Part of GlobeImposter Malware Family
GlobeImposter

2023-02-15 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
DarkBit Ransomware Targets Israel with Command-Line Options and Optimized Encryption Routines
DarkBit

2023-02-15 ⋅ Yoroi ⋅ Carmelo Ragusa, Luigi Martire
Hunting Cyber Evil Ratels: From the targeted attacks to the widespread usage of Brute Ratel
Brute Ratel C4

2023-02-15 ⋅ Netresec ⋅ Erik Hjelmvik
How to Identify IcedID Network Traffic
IcedID

2023-02-14 ⋅ ⋅ TEAMT5 ⋅ GSS & IR Team
Worm malware Win32.Parite Deep Analysis & Scanner
Parite

2023-02-14 ⋅ Cybereason ⋅ Cybereason Incident Response (IR) team
GootLoader - SEO Poisoning and Large Payloads Leading to Compromise
GootLoader Cobalt Strike SystemBC

2023-02-14 ⋅ ⋅ AhnLab ⋅ muhan
Hangeul (HWP) malware using steganography: RedEyes (ScarCruft)

2023-02-14 ⋅ Github (clairelevin) ⋅ Claire Levin
Writing a decryptor for Jaff ransomware
Jaff

2023-02-14 ⋅ @0xToxin
Tweet about Venus Stealer
Venus Stealer

2023-02-14 ⋅ ⋅ DSIH ⋅ Charles Blanc-Rolin
Comment Qbot revient en force avec OneNote ?
QakBot

2023-02-14 ⋅ Zscaler ⋅ Niraj Shivtarkar, Shatak Jain
Havoc Across the Cyberspace
Havoc

2023-02-14 ⋅ Intrinsec ⋅ CTI Intrinsec, Intrinsec
Vice-Society spreads its own ransomware
HelloKitty PolyVice Zeppelin