Malpedia Library

2019-02-26 ⋅ ⋅ Tencent ⋅ Tencent Yujian Threat Intelligence Center
Disclosure of SideWinder APT's attack against South Asia
SideWinder RAZOR TIGER

2019-02-26 ⋅ Malwarebytes ⋅ Jérôme Segura
New Golang brute forcer discovered amid rise in e-commerce attacks
StealthWorker Go WallyShack

2019-02-20 ⋅ SANS ISC InfoSec Forums ⋅ Brad Duncan
More Russian language malspam pushing Shade (Troldesh) ransomware
Troldesh

2019-02-20 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Matthew Molyett, Nick Biasini
Combing Through Brushaloader Amid Massive Detection Uptick
BrushaLoader

2019-02-08 ⋅ ESET Research ⋅ Lukáš Štefanko
First clipper malware discovered on Google Play
Clipper

2019-02-04 ⋅ Cisco ⋅ Jaeson Schultz, Paul Rascagnères, Warren Mercer
ExileRAT shares C2 with LuckyCat, targets Tibet
LuckyCat Exile RAT

2019-01-30 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Jungsoo An, Paul Rascagnères
Fake Cisco Job Posting Targets Korean Candidates
CoreDN JessieConTea

2019-01-24 ⋅ Cisco Talos ⋅ John Arneson
Cisco AMP tracks new campaign that delivers Ursnif
ISFB

2019-01-17 ⋅ SANS ISC InfoSec Forums ⋅ Brad Duncan
Emotet infections and follow-up malware
Emotet

2019-01-15 ⋅ Flashpoint ⋅ Vitali Kremez
Disclosure of Chilean Redbanc Intrusion Leads to Lazarus Ties
PowerRatankba

2019-01-10 ⋅ Cisco Talos ⋅ Mike Bautista
Pylocky Unlocked: Cisco Talos releases PyLocky ransomware decryptor
PyLocky

2018-12-14 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
Shamoon: Destructive Threat Re-Emerges with New Sting in its Tail
DistTrack Filerase StoneDrill OilRig

2018-11-27 ⋅ Cisco Talos ⋅ Paul Rascagnères, Warren Mercer
DNSpionage Campaign Targets Middle East
DNSpionage DNSpionage

2018-11-13 ⋅ Recorded Future ⋅ Insikt Group
Chinese Threat Actor TEMP.Periscope Targets UK-Based Engineering Company Using Russian APT Techniques
SeDll APT40

2018-11-08 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
FASTCash: How the Lazarus Group is Emptying Millions from ATMs
FastCash Lazarus Group

2018-11-08 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Paul Rascagnères, Vitor Ventura, Warren Mercer
Metamorfo Banking Trojan Keeps Its Sights on Brazil
Metamorfo

2018-11-05 ⋅ Cisco ⋅ Danny Adamitis, Eric Kuhla, Paul Rascagnères, Vitor Ventura, Warren Mercer
Persian Stalker pillages Iranian users of Instagram and Telegram
FakeGram

2018-10-29 ⋅ Cisco Talos ⋅ Vitor Ventura
GPlayed's younger brother is a banker — and it's after Russian banks
GPlayed

2018-10-11 ⋅ Cisco Talos ⋅ Vitor Ventura
GPlayed Trojan - .Net playing with Google Market
GPlayed

2018-10-04 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
APT28: New Espionage Operations Target Military and Government Organizations
LoJax Seduploader X-Agent XTunnel Zebrocy APT28