Malpedia Library

Click here to download all references as Bib-File.•

2025-08-26 ⋅ Sophos ⋅ Sophos Counter Threat Unit Research Team
Velociraptor incident response tool abused for remote access

2025-08-25 ⋅ Google ⋅ Google Threat Intelligence Group
Deception in Depth: PRC-Nexus Espionage Campaign Hijacks Web Traffic to Target Diplomats
STATICPLUGIN

2025-08-21 ⋅ GBHackers on Security ⋅ Aman Mishra
Threat Actors Weaponize PDF Editor Trojan to Convert Devices into Proxies
TamperedChef

2025-08-21 ⋅ Trellix ⋅ Sagar Bade
The Silent, Fileless Threat of VShell
VShell

2025-08-21 ⋅ CrowdStrike ⋅ Counter Adversary Operations
MURKY PANDA: A Trusted-Relationship Threat in the Cloud

2025-08-19 ⋅ IBM X-Force ⋅ Raymond Joseph Alfonso
IBM X-Force Threat Analysis: QuirkyLoader - A new malware loader delivering infostealers and RATs
QuirkyLoader

2025-08-18 ⋅ Medium RaghavtiResearch ⋅ BeGoodToAll
Qilin Ransomware-as-a-Service: Threat Analysis and Strategic Outlook
Qilin AgendaCrypt

2025-08-13 ⋅ Intezer ⋅ Nicole Fishbein
Threat Bulletin: Fire in the Woods – A New Variant of FireWood
FireWood

2025-08-10 ⋅ DEFCON 33 ⋅ Seongsu Park
Blurred Lines of Cyber Threat Attribution: The Evolving Tactics of North Korean Cyber Threat Actors

2025-08-05 ⋅ Defentive ⋅ Defentive Threat Research
Lost in Translation: Threat Actors Use SEO Poisoning and Fake DeepL Sites to Distribute Gh0st RAT
Ghost RAT

2025-08-01 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Hunting with 20 Urlscan.io Search Queries

2025-07-31 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats
ApolloShadow

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence Through NRD's ( New Registered Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via TLD's ( Top Level Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via GTLD's ( Generic Top Level Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence visa ccTLD ( country code top-level domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence ( Compromised domain list ) via ZoneFiles

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via Newly Registered Domains

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence vis Domain Monitoring ( ccTLD , gTLD , TLD , Malware Zones )

2025-07-29 ⋅ Foresiet ⋅ Foresiet
AURA Stealer: A Crude Clone of LummaC2 – Technical Analysis and Threat Breakdown
Aura Stealer