Malpedia Library

Click here to download all references as Bib-File.•

2022-04-20 ⋅ InfoSec Institute ⋅ Pedro Tavares
Mars Stealer malware analysis
Mars Stealer

2022-04-06 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Windows MetaStealer Malware
MetaStealer

2022-03-23 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Arkei Variants: From Vidar to Mars Stealer
Arkei Stealer Mars Stealer Oski Stealer Vidar

2022-03-23 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Arkei Variants: From Vidar to Mars Stealer
Arkei Stealer Mars Stealer Vidar

2022-03-16 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Qakbot infection with Cobalt Strike and VNC activity
Cobalt Strike QakBot

2022-01-20 ⋅ SANS ISC InfoSec Forums ⋅ Xavier Mertens
RedLine Stealer Delivered Through FTP
RedLine Stealer

2022-01-19 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
0.0.0.0 in Emotet Spambot Traffic
Emotet

2021-12-31 ⋅ InfoSec Handlers Diary Blog ⋅ Jan Kopriva
Do you want your Agent Tesla in the 300 MB or 8 kB package?
Agent Tesla

2021-12-30 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Agent Tesla Updates SMTP Data Exfiltration Technique
Agent Tesla

2021-12-20 ⋅ InfoSec Handlers Diary Blog ⋅ Alef Nula, Jan Kopriva
PowerPoint attachments, Agent Tesla and code reuse in malware
Agent Tesla

2021-12-16 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
How the "Contact Forms" campaign tricks people
IcedID

2021-12-03 ⋅ SANS ISC InfoSec Forums ⋅ Brad Duncan
TA551 (Shathak) pushes IcedID (Bokbot)
IcedID

2021-11-30 ⋅ CYBER GEEKS All Things Infosec ⋅ CyberMasterV
Just another analysis of the njRAT malware – A step-by-step approach
NjRAT

2021-11-16 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Emotet Returns
Emotet

2021-10-31 ⋅ CYBER GEEKS All Things Infosec ⋅ CyberMasterV
A detailed analysis of the STOP/Djvu Ransomware
STOP

2021-09-29 ⋅ CYBER GEEKS All Things Infosec ⋅ CyberMasterV
How to defeat the Russian Dukes: A step-by-step analysis of MiniDuke used by APT29/Cozy Bear
MiniDuke

2021-09-28 ⋅ HolisticInfosec ⋅ Russ McRee
Zircolite vs Defense Evasion & Nobellium FoggyWeb

2021-09-01 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
STRRAT: a Java-based RAT that doesn't care if you have Java
STRRAT

2021-07-24 ⋅ InfoSec Handlers Diary Blog ⋅ Xavier Mertens
Agent.Tesla Dropped via a .daa Image and Talking to Telegram
Agent Tesla

2021-07-09 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Hancitor tries XLL as initial malware file
Cobalt Strike Hancitor