Malpedia Library

Click here to download all references as Bib-File.•

2026-01-13 ⋅ Security Alliance ⋅ Security Alliance
VS Code Tasks Abuse by Contagious Interview (DPRK)
BeaverTail InvisibleFerret

2026-01-13 ⋅ Spamhaus ⋅ Spamhaus Malware Labs
Spamhaus Botnet Threat Update July to December 2025
Coper FluBot Joker Aisuru Mirai AsyncRAT BianLian Cobalt Strike DCRat Havoc Latrodectus PureLogs Stealer Quasar RAT Remcos Rhadamanthys Sliver ValleyRAT Venom RAT Vidar XWorm

2026-01-13 ⋅ SecurityLiterate ⋅ Kyle Cucci
Deceiving the Deceivers: A Review of Deception Pro
Formbook

2026-01-12 ⋅ PolySwarm Tech Team ⋅ The Hivemind
Transparent Tribe Evolves Tradecraft With Multi-Stage LNK Malware

2026-01-12 ⋅ Securonix ⋅ Aaron Beardslee, Akshay Gaikwad, Shikha Sangwan
SHADOW#REACTOR – Text-Only Staging, .NET Reactor, and In-Memory Remcos RAT Deployment
Remcos

2026-01-12 ⋅ sec0wn ⋅ Mo Bustami
PART 2 - From a New Year's surprise to a bag of coal - Analysis of mystery PowerShell (Never trust LLMs)

2026-01-12 ⋅ ⋅ Cert-UA ⋅ Cert-UA
"Unreliable Fund": targeted cyberattacks UAC-0190 against SOU using PLUGGYAPE (CERT-UA#19092)
PLUGGYAPE Void Blizzard

2026-01-11 ⋅ Red Asgard ⋅ Red Asgard
Hunting Lazarus: Inside the Contagious Interview C2 Infrastructure
BeaverTail InvisibleFerret

2026-01-11 ⋅ Reverse The Malware ⋅ Diyar Saadi
How Malware Survives: Understanding Watcher and Helper Components

2026-01-11 ⋅ Medium APOPHIS ⋅ Michelle Khalil
ValleyRAT_S2 Chinese campaign
ValleyRAT

2026-01-09 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

2026-01-09 ⋅ DARKReading ⋅ Nate Nelson
Russia’s Fancy Bear APT Doubles Down on Global Secrets Theft

2026-01-08 ⋅ Cloudsek ⋅ somedieyoungZZ
Reborn in Rust: Muddy Water Evolves Tooling with RustyWater Implant
Archer RAT

2026-01-08 ⋅ Cisco Talos ⋅ Asheer Malhotra, Brandon White, Vitor Ventura
UAT-7290 targets high value telecommunications infrastructure in South Asia
DriveSwitch RushDrop SilentRaid DAGGER PANDA

2026-01-08 ⋅ FBI ⋅ IC3
North Korean Kimsuky Actors Leverage Malicious QR Codes in Spearphishing Campaigns Targeting U.S. Entities

2026-01-08 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who Benefited from the Aisuru and Kimwolf Botnets?
Kimwolf Aisuru

2026-01-07 ⋅ MalBeacon ⋅ MalBeacon
[Op Report] CastleRAT Campaign leads to Hands-on-Keyboard ATO Operations
NightshadeC2

2026-01-07 ⋅ Huntress Labs ⋅ Anna Pham, Matt Anderson
The Great VM Escape: ESXi Exploitation in the Wild

2026-01-07 ⋅ Recorded Future ⋅ Insikt Group
GRU-Linked BlueDelta Evolves Credential Harvesting

2026-01-06 ⋅ Reversing Labs ⋅ Robert Simmons
Unpacking the packer ‘pkr_mtsi’
Broomstick Supper