Malpedia Library

2022-03-10 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Diavol the Enigma of Ransomware
Diavol

2022-03-04 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
SystemBC, PowerShell version
SystemBC

2022-02-14 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
PrivateLoader to Anubis Loader
Anubis Loader PrivateLoader

2022-02-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Jonathan Mccay, Joshua Platt
Sugar Ransomware, a new RaaS
Sugar

2022-01-11 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Signed DLL campaigns as a service
BATLOADER Cobalt Strike ISFB Zloader

2021-10-14 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Investigation into the state of NIM malware Part 2
Cobalt Strike NimGrabber Nimrev Unidentified 088 (Nim Ransomware)

2021-09-07 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Decoding SmartAssembly strings, a Haron ransomware case study
Haron Ransomware

2021-08-19 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Looking at the new Krypton crypter and recent Data Exfiltrator Samples

2021-08-03 ⋅ Twitter (@sysopfb) ⋅ Jason Reaves
Tweet on python script to decode the blob from Blackmatter ransomware
DarkSide

2021-07-30 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Decrypting BazarLoader strings with a Unicorn
BazarBackdoor

2021-07-08 ⋅ Medium walmartglobaltech ⋅ Harold Ogden, Jason Reaves
Amadey stealer plugin adds Mikrotik and Outlook harvesting
Amadey

2021-07-06 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
TA505 adds GoLang crypter for delivering miners and ServHelper
ServHelper

2021-06-07 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Inside the SystemBC Malware-As-A-Service
Ryuk SystemBC TrickBot

2021-05-03 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
BuerLoader Updates
Buer

2021-04-20 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
CobaltStrike Stager Utilizing Floating Point Math
Cobalt Strike

2021-04-09 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
A Relook at the TerraLoader Dropper DLL
TerraLoader

2021-04-07 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
Not your same old adware anymore, PBOT updates

2021-04-05 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
TrickBot Crews New CobaltStrike Loader
Cobalt Strike TrickBot

2021-03-05 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
A look at an Android bot from unpacking to DGA
FluBot

2021-03-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Investigation into the state of Nim malware
BazarNimrod Cobalt Strike