Malpedia Library

Click here to download all references as Bib-File.•

2020-06-05 ⋅ Votiro ⋅ Votiro’s Research Team
Anatomy of a Well-Crafted UPS, FedEx, and DHL Phishing Email During COVID-19
Dridex

2020-05-28 ⋅ VMWare Carbon Black ⋅ Ryan Murphy, Tom Kellermann
Modern Bank Heists 3.0
Emotet

2020-05-19 ⋅ zero2auto ⋅ Vitali Kremez
Netwalker Ransomware - From Static Reverse Engineering to Automatic Extraction
Mailto

2020-05-11 ⋅ SentinelOne ⋅ Gal Kristal
The Anatomy of an APT Attack and CobaltStrike Beacon’s Encoded Configuration
Cobalt Strike

2020-05-06 ⋅ Prevailion ⋅ Danny Adamitis
Phantom in the Command Shell
EVILNUM

2020-04-29 ⋅ Twitter (@h4ckak) ⋅ Ring4sky
More IOCs related to PhantomLance
PhantomLance

2020-04-28 ⋅ Kaspersky Labs ⋅ Alexey Firsh, Lev Pikman
Hiding in plain sight: PhantomLance walks into a market
PhantomLance

2020-04-23 ⋅ ESET Research ⋅ Eset
ESET researchers disrupt cryptomining botnet VictoryGate
VictoryGate

2020-03-24 ⋅ Pavel Asinovsky
TrickBot Pushing a 2FA Bypass App to Bank Customers in Germany
TrickMo

2020-03-19 ⋅ ESET Research ⋅ Vladislav Hrčka
Stantinko’s new cryptominer features unique obfuscation techniques
Stantinko

2020-03-10 ⋅ Microsoft ⋅ Tom Burt
New action to disrupt world’s largest online criminal network
Necurs

2020-03-05 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
ELF_TSCookie - Linux Malware Used by BlackTech
TSCookie

2020-02-22 ⋅ Objective-See ⋅ Patrick Wardle
Weaponizing a Lazarus Group Implant: repurposing a 1st-stage loader, to execute custom 'fileless' payloads
AppleJeus

2020-02-18 ⋅ Personal Blog of Christophe Tafani-Dereeper ⋅ Christophe Tafani-Dereeper
Hidden in PEB Sight: Hiding Windows API Imports With a Custom Loader

2020-02-05 ⋅ FireEye ⋅ Andrew Moore, Blaine Stancill, Genevieve Stark, Rick Cole
STOMP 2 DIS: Brilliance in the (Visual) Basics
MINEBRIDGE

2020-01-26 ⋅ Youtube (OALabs) ⋅ Sean Wilson, Sergei Frankoff
IDA Pro Automated String Decryption For REvil Ransomware
REvil

2020-01-23 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Sodinokibi Ransomware Threatens to Publish Data of Automotive Group
REvil

2020-01-21 ⋅ Palo Alto Networks Unit 42 ⋅ Asher Davila, Cong Zheng, Yang Ji
Muhstik Botnet Attacks Tomato Routers to Harvest New IoT Devices
Tsunami

2020-01-07 ⋅ Bitdefender ⋅ Liviu Arsene
Hold My Beer Mirai – Spinoff Named ‘LiquorBot’ Incorporates Cryptomining
LiquorBot