Malpedia Library

Click here to download all references as Bib-File.•

2022-09-22 ⋅ Github (muha2xmad) ⋅ Muhammad Hasan Ali
Technical analysis of Ginp android malware
Ginp

2022-09-22 ⋅ Broadcom ⋅ Symantec Threat Hunter Team
Noberus Ransomware: Darkside and BlackMatter Successor Continues to Evolve its Tactics
BlackCat BlackMatter DarkSide

2022-09-22 ⋅ Cyber Geeks ⋅ Vlad Pasca
A Technical Analysis Of The Leaked LOCKBIT 3.0 Builder
LockBit

2022-09-22 ⋅ Avast ⋅ Jan Vojtěšek
Raspberry Robin’s Roshtyak: A Little Lesson in Trickery
Raspberry Robin Roshtyak

2022-09-21 ⋅ Gdata ⋅ Karsten Hahn
Identifying file manipulation in system files

2022-09-21 ⋅ Zscaler ⋅ Romain Dumont
Technical Analysis of Crytox Ransomware
Crytox

2022-09-21 ⋅ Microsoft ⋅ Abhishek Pustakala, Harshita Tripathi, Microsoft 365 Defender Research Team, Shivang Desai
Rewards plus: Fake mobile banking rewards apps lure users to install info-stealing RAT on Android devices

2022-09-21 ⋅ Microsoft ⋅ Microsoft Detection and Response Team (DART), Microsoft Security Experts
The art and science behind Microsoft threat hunting: Part 2

2022-09-21 ⋅ Check Point ⋅ Jiří Vinopal
Native function and Assembly Code Invocation
MiniDuke

2022-09-21 ⋅ CISA ⋅ CISA, FBI
AA22-264A: Iranian State Actors Conduct Cyber Operations Against the Government of Albania (PDF)
Unidentified 095 (Iranian Wiper)

2022-09-21 ⋅ CISA ⋅ CISA, FBI
Alert (AA22-264A) Iranian State Actors Conduct Cyber Operations Against the Government of Albania
Unidentified 095 (Iranian Wiper)

2022-09-21 ⋅ Twitter (@0xToxin) ⋅ @0xToxin
doenerium phishing campaign
doenerium

2022-09-21 ⋅ BitSight ⋅ João Batista
SystemBC: The Multipurpose Proxy Bot Still Breathes
SystemBC

2022-09-21 ⋅ Github (muha2xmad) ⋅ Muhammad Hasan Ali
Technical analysis of Hydra android malware
Hydra Joker

2022-09-20 ⋅ cocomelonc
Malware development: persistence - part 11. Powershell profile. Simple C++ example.
Turla RAT TurlaRPC

2022-09-20 ⋅ vmware ⋅ Dana Behling
Threat Report: Illuminating Volume Shadow Deletion
Conti HelloKitty

2022-09-20 ⋅ vmware ⋅ Dana Behling
Threat Research: New Method of Volume Shadow Backup Deletion Seen in Recent Ransomware

2022-09-20 ⋅ Recorded Future ⋅ Insikt Group®
Threat Actors Continue to Abuse Google Tag Manager for Payment Card e-Skimming

2022-09-19 ⋅ CyberScoop ⋅ AJ Vicens
Hacking group focused on Central America dumps 10 terabytes of military emails, files
Guacamaya

2022-09-19 ⋅ Fortinet ⋅ Xiaopeng Zhang
Excel Document Delivers Multiple Malware By Exploiting CVE-2017-11882 – Part I
Formbook RedLine Stealer