Malpedia Library

2025-03-16 ⋅ SYGNIA ⋅ Sygnia Team
Bybit – What We Know So Far

2025-03-16 ⋅ cyb3rjerry
Analyzing the RedTiger Malware Stealer
RedTiger Stealer

2025-03-15 ⋅ Github (TheRavenFile) ⋅ Rakesh Krishnan
IoCs for Anubis Backdoor
Anubis Backdoor

2025-03-14 ⋅ VitalDigitalForensics ⋅ v4ensics
Lumma Stealer – A tale that starts with a fake Captcha
Lumma Stealer

2025-03-14 ⋅ Trend Micro ⋅ Adam O'Connor, Ian Kenefick, Jack Walsh, Laura Medina, Lucas Silva
SocGholish’s Intrusion Techniques Facilitate Distribution of RansomHub Ransomware
FAKEUPDATES RansomHub

2025-03-14 ⋅ Twitter (@CERTCyberdef) ⋅ Alexandre Matousek, Marine PICHON
Tweet on Emmenhtal v3
Emmenhtal Lumma Stealer Rhadamanthys

2025-03-13 ⋅ Securonix ⋅ Den Iyzvyk, Tim Peck
Analyzing OBSCURE#BAT Threat Actors Lure Victims into Executing Malicious Batch Scripts to Deploy Stealthy Rootkits
Quasar RAT r77

2025-03-13 ⋅ EclecticIQ ⋅ Arda Büyükkaya
Inside BRUTED: Black Basta (RaaS) Members Used Automated Brute Forcing Framework to Target Edge Network Devices
Black Basta

2025-03-13 ⋅ Forescout ⋅ Forescout Research, Sai Molige
New Ransomware Operator Exploits Fortinet Vulnerability Duo
BlackMatter LockBit Mora_001

2025-03-13 ⋅ Cyfirma ⋅ cyfirma
Tracking Ransomware: February 2025
LinkC Pub

2025-03-13 ⋅ Infoblox ⋅ Jason Hill
Work Hard, Pay Harder!

2025-03-13 ⋅ Tinyhack.com ⋅ tinyhack
Decrypting Encrypted files from Akira Ransomware (Linux/ESXI variant 2024) using a bunch of GPUs
Akira

2025-03-13 ⋅ Group-IB ⋅ Group-IB
ClickFix: The Social Engineering Technique Hackers Use to Manipulate Victims
Emmenhtal Lumma Stealer

2025-03-13 ⋅ Linkedin (ThreatMon) ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
Chrome DLL Manipulation Attack Exposed

2025-03-13 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
ArechClient; Decoding IOCs and finding the onboard browser extension
SectopRAT

2025-03-12 ⋅ Youtube (AhmedS Kasmani) ⋅ AhmedS Kasmani
Initial Analysis of Black Basta Chat Leaks
Black Basta Black Basta

2025-03-12 ⋅ YouTube (John Hammond) ⋅ John Hammond
LEAKED Russian Hackers Internal Chats
Black Basta Black Basta

2025-03-12 ⋅ CISA ⋅ CISA, FBI, MS-ISAC
Medusa Ransomware

2025-03-12 ⋅ Red Canary ⋅ Red Canary
2025 Threat Detection Report
HijackLoader Lumma Stealer NetSupportManager RAT

2025-03-12 ⋅ Mandiant ⋅ Frank Tse, Jakub Jozwiak, Logeswaran Nadarajan, Lukasz Lamparski, Mathew Potaczek, Mustafa Nasser, Nick Harbour, Punsaen Boonyakarn, Shawn Chew
Ghost in the Router: China-Nexus Espionage Actor UNC3886 Targets Juniper Routers
tsh