Malpedia Library

Click here to download all references as Bib-File.•

2024-04-10 ⋅ Proofpoint ⋅ Selena Larson, Tommy Madjar
Security Brief: TA547 Targets German Organizations with Rhadamanthys Stealer
Rhadamanthys

2024-04-08 ⋅ Zscaler ⋅ Nikolaos Pantazopoulos
Automating Pikabot’s String Deobfuscation
Pikabot

2024-03-18 ⋅ Perception Point ⋅ Ariel Davidpur, Peleg Cabra
Operation PhantomBlu: New and Evasive Method Delivers NetSupport RAT
NetSupportManager RAT

2024-03-18 ⋅ PCrisk ⋅ Tomas Meskauskas
FORCE (.FORCE) ransomware virus – removal and decryption options
Phobos

2024-03-04 ⋅ Proofpoint ⋅ Kelsey Merriman, Selena Larson, Tommy Madjar
TA577’s Unusual Attack Chain Leads to NTLM Data Theft

2024-02-29 ⋅ CrowdStrike ⋅ Jean-Philippe Teissier
The Anatomy of an ALPHA SPIDER Ransomware Attack
BlackCat

2024-02-27 ⋅ Bitdefender ⋅ Andrei Lapusneanu
When Stealers Converge: New Variant of Atomic Stealer in the Wild
AMOS

2024-02-21 ⋅ Invoke RE ⋅ Josh Reynolds
Automating Qakbot Malware Analysis with Binary Ninja
QakBot

2024-02-21 ⋅ YouTube (Invoke RE) ⋅ Josh Reynolds
Analyzing Qakbot Using Binary Ninja Automation Part 3
QakBot

2024-02-12 ⋅ Estrellas's Blog ⋅ Otávio M.
Unveiling custom packers: A comprehensive guide
Dridex Simda

2024-02-09 ⋅ YouTube (Invoke RE) ⋅ Josh Reynolds
Analyzing and Unpacking Qakbot Using Binary Ninja Automation Part 2
QakBot

2024-02-05 ⋅ PCrisk ⋅ Tomas Meskauskas
How to remove CrackedCantil from the operating system
CrackedCantil

2024-01-25 ⋅ JSAC 2024 ⋅ Masafumi Takeda, Tomoya Furukawa
Threat Intelligence of Abused Public Post-Exploitation Frameworks
AsyncRAT DCRat Empire Downloader GRUNT Havoc Koadic Merlin PoshC2 Quasar RAT Sliver

2024-01-23 ⋅ YouTube (Invoke RE) ⋅ Josh Reynolds
Analyzing and Unpacking Qakbot using Binary Ninja Automation
QakBot

2024-01-22 ⋅ SentinelOne ⋅ Aleksandar Milenkoski, Tom Hegel
ScarCruft | Attackers Gather Strategic Intelligence and Target Cybersecurity Professionals
Kimsuky

2024-01-15 ⋅ Russian Panda Research Blog ⋅ RussianPanda
From Russia With Code: Disarming Atomic Stealer
AMOS

2024-01-10 ⋅ Malwarebytes ⋅ Jérôme Segura
Atomic Stealer rings in the new year with updated version
AMOS

2023-12-21 ⋅ Proofpoint ⋅ Axel F, Dusty Miller, Selena Larson, Tommy Madjar
BattleRoyal, DarkGate Cluster Spreads via Email and Fake Browser Updates
DarkGate

2023-12-14 ⋅ Mandiant ⋅ Adrian McCabe, Geoff Ackerman, Rufus Brown, Ryan Tomcik
Opening a Can of Whoop Ads: Detecting and Disrupting a Malvertising Campaign Distributing Backdoors
DanaBot DarkGate