Malpedia Library

Click here to download all references as Bib-File.•

2022-08-25 ⋅ Trend Micro ⋅ Bahaa Yamany, Earle Maui Earnshaw, Jay Yaneza, Jeffrey Francis Bonaobra, Mohamed Fahmy, Nathaniel Gregory Ragasa
New Golang Ransomware Agenda Customizes Attacks
AgendaCrypt

2022-03-29 ⋅ SentinelOne ⋅ Antonis Terefos, James Haughom, Jeff Cavanaugh, Jim Walter, Nick Fox, Shai Tilias
From the Front Lines | Hive Ransomware Deploys Novel IPfuscation Technique To Avoid Detection
Cobalt Strike Hive

2022-03-23 ⋅ Mandiant ⋅ Dan Scott, Elias fox, Gary Freas, Jeffery Johnson, Michael Barnhart, Michelle Cantos
Not So Lazarus: Mapping DPRK Cyber Threat Groups to Government Organizations

2022-03-22 ⋅ The Register ⋅ Jeff Burt
What does Go-written malware look like? Here's a sample under the microscope
Arid Gopher

2022-03-22 ⋅ The Register ⋅ Jeff Burt
This is a BlackCat you don't want crossing your path
BlackCat BlackMatter

2022-03-16 ⋅ The Register ⋅ Jeff Burt
BlackBerry says extortionists erase documents if ransom unpaid
LokiLocker

2022-03-11 ⋅ propublica ⋅ Craig Silverman, Jeff Kao
Infamous Russian Troll Farm Appears to Be Source of Anti-Ukraine Propaganda

2022-02-18 ⋅ 0x00sec ⋅ jeff
Dynamically extracting the encryption key from a simple ransomware

2021-12-29 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
AsyncRAT Configuration Parser
AsyncRAT

2021-11-07 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White, Peter Renals, Robert Falcone
Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer
Godzilla Webshell NGLite

2021-11-02 ⋅ CyberScoop ⋅ Jeff Stone
US seeks extradition of alleged Ukrainian scammer arrested at Polish border stop

2021-11-01 ⋅ Software Engineering Institute ⋅ Jeffrey Gennari
Two Tools for Malware Analysis and Reverse Engineering in Ghidra

2021-06-16 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White, Kyle Wilhoit
Matanbuchus: Malware-as-a-Service with Demonic Intentions
Matanbuchus BelialDemon

2021-03-26 ⋅ Accenture ⋅ Eric Welling, Jeff Beley, Ryan Leininger
It's getting hot in here! Unknown threat group using Hades ransomware to turn up the heat on their victims
Hades

2021-03-08 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White
Analyzing Attacks Against Microsoft Exchange Server With China Chopper Webshells
CHINACHOPPER

2020-11-17 ⋅ CyberScoop ⋅ Jeff Stone
FIN7 recruiter Andrii Kolpakov pleads guilty to role in global hacking scheme

2020-11-04 ⋅ FireEye ⋅ Jacob Thompson, Jeffrey Martin, Rapid7
In Wild Critical Buffer Overflow Vulnerability in Solaris Can Allow Remote Takeover — CVE-2020-14871

2020-06-10 ⋅ James_inthe_box, jeFF0Falltrades, _re_fox
FRat Reporting, YARA, and IoCs
FRat Loader FRat

2020-05-07 ⋅ The Citizenlab ⋅ Christopher Parsons, Jedidiah Crandall, Jeffrey Knockel, Lotus Ruan, Ron Deibert, Ruohan Xiong
We Chat, They Watch: How International Users Unwittingly Build up WeChat’s Chinese Censorship Apparatus

2020-02-11 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
Metamorfo (aka Casbaneiro)
Metamorfo Unidentified 072 (Metamorfo Loader)