Malpedia Library

Click here to download all references as Bib-File.•

2023-05-23 ⋅ CrowdStrike ⋅ CrowdStrike
Modern Adversaries and Evasion Techniques: Why Legacy AV Is an Easy Target
GOLD REBELLION

2023-05-23 ⋅ CrowdStrike ⋅ CrowdStrike
Modern Adversaries and Evasion Techniques: Why Legacy AV Is an Easy Target

2023-05-23 ⋅ AhnLab ⋅ ASEC
DarkCloud Infostealer Being Distributed via Spam Emails
DarkCloud Stealer

2023-05-23 ⋅ Cert-AgID ⋅ Cert-AgID
Technical analysis and considerations on Strela malware
StrelaStealer

2023-05-23 ⋅ Secplicity ⋅ Ryan Estes
Scratching the Surface of Rhysida Ransomware
Rhysida

2023-05-23 ⋅ Aleksandar Milenkoski
Kimsuky | Ongoing Campaign Using Tailored Reconnaissance Toolkit
RandomQuery

2023-05-23 ⋅ U.S. Department of the Treasury ⋅ U.S. Department of the Treasury
Treasury Targets DPRK Malicious Cyber and Illicit IT Worker Activities

2023-05-23 ⋅ loginsoft ⋅ Saharsh Agrawal
Taming the Storm: Understanding and Mitigating the Consequences of CVE-2023-27350
Clop LockBit Silence

2023-05-23 ⋅ ESET Research ⋅ Lukáš Štefanko
Android app breaking bad: From legitimate screen recording to file exfiltration within a year

2023-05-23 ⋅ Kaspersky Labs ⋅ Giampaolo Dedola
Meet the GoldenJackal APT group. Don’t expect any howls
Jackal GoldenJackal

2023-05-22 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Espionage activity of UAC-0063 against Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Israel, India (CERT-UA#6549)
CHERRYSPY UAC-0063

2023-05-22 ⋅ eSentire ⋅ Joe Stewart, Keegan Keplinger
The Hunt for VENOM SPIDER PART 2
VENOM SPIDER

2023-05-22 ⋅ The DFIR Report ⋅ The DFIR Report
IcedID Macro Ends in Nokoyawa Ransomware
IcedID Nokoyawa Ransomware PhotoLoader

2023-05-22 ⋅ AhnLab ⋅ ASEC
Kimsuky Group Using Meterpreter to Attack Web Servers
Kimsuky Meterpreter

2023-05-22 ⋅ Sekoia ⋅ Charles M., Jamila B., Kilian Seznec
Bluenoroff’s RustBucket campaign
RustBucket WebbyTea

2023-05-22 ⋅ kienmanowar Blog ⋅ m4n0w4r
[Case study] Decrypt strings using Dumpulator

2023-05-22 ⋅ Check Point ⋅ Alexey Bukhteyev, Arie Olshtein
Cloud-based Malware Delivery: The Evolution of GuLoader
CloudEyE

2023-05-22 ⋅ Trend Micro ⋅ Bahaa Yamany, Mahmoud Zohdy, Mohamed Fahmy, Sherif Magdy
BlackCat Ransomware Deploys New Signed Kernel Driver
BlackCat

2023-05-22 ⋅ Cluster25 ⋅ Cluster25 Threat Intel Team
Back in Black: BlackByte Ransomware returns with its New Technology (NT) version
BlackByte

2023-05-21 ⋅ Github (0xThiebaut) ⋅ Maxime Thiebaut
PCAPeek
IcedID QakBot