Malpedia Library

Click here to download all references as Bib-File.•

2020-12-02 ⋅ RiskIQ ⋅ Team RiskIQ
‘Shadow Academy’ Targets 20 Universities Worldwide

2020-12-02 ⋅ ESET Research ⋅ Matthieu Faou
Turla Crutch: Keeping the “back door” open
Crutch Gazer Turla

2020-12-01 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
[Urgent Report] Targeted attack by "SigLoader" that exploits Microsoft's digital signature file confirmed
SigLoader

2020-12-01 ⋅ Qianxin ⋅ Qi Anxin Threat Intelligence Center
Blade Eagle Group - Targeted attack group activities circling the Middle East and West Asia's cyberspace revealed
SpyNote BladeHawk

2020-12-01 ⋅ Juniper ⋅ Paul Kimayong
DarkIRC bot exploits recent Oracle WebLogic vulnerability
DarkIRC

2020-12-01 ⋅ FireEye ⋅ FireEye
Solarwinds Breach Resource Center
SUNBURST

2020-12-01 ⋅ Group-IB ⋅ Group-IB, Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
Egregor ransomware: The legacy of Maze lives on
Egregor QakBot

2020-12-01 ⋅ 360.cn ⋅ jindanlong
Hunting Beacons
Cobalt Strike

2020-12-01 ⋅ Intel 471 ⋅ Intel 471
Steal, then strike: Access merchants are first clues to future ransomware attacks
DoppelPaymer

2020-12-01 ⋅ FireEye ⋅ James T. Bennett
Using Speakeasy Emulation Framework Programmatically to Unpack Malware

2020-12-01 ⋅ Trend Micro ⋅ Ryan Flores
The Impact of Modern Ransomware on Manufacturing Networks
Maze Petya REvil

2020-12-01 ⋅ SUCURI ⋅ Luke Leal
“Free” Symchanger Malware Tricks Users Into Installing Backdoor

2020-12-01 ⋅ US-CERT ⋅ US-CERT
Alert (AA20-336A): Advanced Persistent Threat Actors Targeting U.S. Think Tanks

2020-11-30 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
Threat actor leverages coin miner techniques to stay under the radar – here’s how to spot them
APT32

2020-11-30 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team, Microsoft Threat Intelligence Center (MSTIC)
Threat actor (BISMUTH) leverages coin miner techniques to stay under the radar – here’s how to spot them
Cobalt Strike

2020-11-27 ⋅ CYBER GEEKS All Things Infosec ⋅ CyberMasterV
Dissecting APT21 samples using a step-by-step approach
NetTraveler

2020-11-27 ⋅ ⋅ Macnica ⋅ Hiroshi Takeuchi
Analyzing Organizational Invasion Ransom Incidents Using Dtrack
Cobalt Strike Dtrack

2020-11-27 ⋅ Objective-See ⋅ Patrick Wardle
Adventures in Anti-Gravity (Part II) Deconstructing the Mac Variant of GravityRAT

2020-11-27 ⋅ Trend Micro ⋅ Luis Magisa, Steven Du
New MacOS Backdoor Connected to OceanLotus Surfaces
OceanLotus APT32

2020-11-27 ⋅ Marco Ramilli's Blog ⋅ Marco Ramilli
Threat Actor: Unkown
Unidentified JS 004