Malpedia Library

Click here to download all references as Bib-File.•

2022-10-10 ⋅ RiskIQ ⋅ Microsoft Threat Intelligence Center (MSTIC)
DEV-0832 Leverages Commodity Tools in Opportunistic Ransomware Campaigns
BlackCat Mount Locker SystemBC Zeppelin

2022-07-29 ⋅ RiskIQ ⋅ Jordan Herman
Falling Into a Nest of Vipers or: "Why'd it have to be snakes?" (Microsoft Threat Intelligence Brief)

2022-07-27 ⋅ Microsoft ⋅ Microsoft Security Response Center (MSRC), Microsoft Threat Intelligence Center (MSTIC), RiskIQ
Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits
Subzero Denim Tsunami

2022-07-01 ⋅ RiskIQ ⋅ RiskIQ
ToddyCat: A Guided Journey through the Attacker's Infrastructure
ShadowPad ToddyCat

2022-06-16 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: New ManaTools Panel Identified

2022-06-14 ⋅ RiskIQ ⋅ Jordan Herman
RiskIQ: Identifying BumbleBee Command and Control Servers
BumbleBee

2022-05-16 ⋅ RiskIQ ⋅ RiskIQ
RiskIQ: Storm Clauds - New C2 Over DNS Mimics CloudFront
Mirai

2022-05-10 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: VBScript Hosted on BlogSpot URL Deploys Malware Associated with NyanCat

2022-05-10 ⋅ RiskIQ ⋅ Kelsey Clapp
Commodity Skimming & Magecart Trends in First Quarter of 2022
magecart

2022-05-10 ⋅ RiskIQ ⋅ RiskIQ
RiskIQ: Identifying Dridex C2 via SSL Certificate Patterns
Dridex

2022-04-19 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: Legitimate WordPress Site Hosts Malicious Content
AsyncRAT

2022-04-18 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: Trickbot Rickroll
TrickBot

2022-03-18 ⋅ RiskIQ ⋅ Jennifer Grob, RiskIQ
RiskIQ: Fraudulent Website Attempts to Collect Donations in Support of Ukraine Humanitarian Fund (UHF)

2022-03-16 ⋅ RiskIQ ⋅ Jennifer Grob, RiskIQ
RiskIQ: Suspicious Domain Claiming Support for Ukraine Associated with Malware File

2022-03-16 ⋅ RiskIQ ⋅ Jennifer Grob, RiskIQ
RiskIQ: Website Spoofed Ukrainian "Official site of the PrivatBank Charitable Foundation" to Skim Credit Card Data

2022-03-15 ⋅ RiskIQ ⋅ RiskIQ
RiskIQ: Trickbot Abuse of Compromised MikroTik Routers for Command and Control
TrickBot

2022-03-02 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: Malware Linked to Upwork Post Seeking Content Writer for a "Newly Developed Application" Deploys DCRat
DCRat

2022-03-01 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: Fraudulent Website Spoofing UNHCR for Ukrainian Refugees Seeks Bitcoin Donations

2022-02-25 ⋅ RiskIQ ⋅ RiskIQ
RiskIQ: UNC1151/GhostWriter Phishing Attacks Target Ukrainian Soldiers

2022-02-24 ⋅ RiskIQ ⋅ RiskIQ
RiskIQ: WatchGuard Devices Targeted by Cyclops Blink Malware