Malpedia Library

Click here to download all references as Bib-File.•

2024-04-17 ⋅ Microsoft ⋅ Hagai Ran Kestenberg, Yossi Weizman
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters

2024-04-17 ⋅ Kaspersky ⋅ Dmitry Kalinin
SoumniBot: the new Android banker’s unique techniques
SoumniBot

2024-04-17 ⋅ WithSecure ⋅ Mohammad Kazem Hassan Nejad
KAPEKA A novel backdoor spotted in Eastern Europe
Kapeka

2024-04-16 ⋅ paloalto Netoworks: Unit42 ⋅ paloalto Networks: Unit42
ContactForms campaign pushing SSLoad malware
SSLoad

2024-04-16 ⋅ Mandiant ⋅ Alden Wahlstrom, Anton Prokopenkov, Dan Black, Dan Perez, Gabby Roncone, John Wolfram, Lexie Aytes, Nick Simonian, Ryan Hall, Tyler McLellan
APT44: Unearthing Sandworm
VPNFilter BlackEnergy CaddyWiper EternalPetya HermeticWiper Industroyer INDUSTROYER2 Olympic Destroyer PartyTicket RoarBAT Sandworm

2024-04-15 ⋅ UC Santa Cruz ⋅ Alonso Rojas, Alvaro A. Cardenas, Bing Huang, Emmanuele Zambon, Juan Lozano, Keerthi Koneru, Luis Salazar, Marina Krotofil, Ross Baldick, Sebastian R. Castro
A Tale of Two Industroyers: It was the Season of Darkness
Industroyer INDUSTROYER2

2024-04-15 ⋅ Positive Technologies ⋅ Aleksandr Badaev, Kseniya Naumova
SteganoAmor campaign: TA558 mass-attacking companies and public institutions all around the world
LokiBot 404 Keylogger Agent Tesla CloudEyE Formbook Remcos XWorm

2024-04-12 ⋅ Github (kevoreilly) ⋅ Kevin O’Reilly
DoomedLoader YARA rule
SquidLoader

2024-04-12 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
UPSTYLE

2024-04-11 ⋅ Microsoft ⋅ Mark Russinovich
How Microsoft discovers and mitigates evolving attacks against AI guardrails

2024-04-11 ⋅ paloalto Netoworks: Unit42 ⋅ paloalto Networks: Unit42
Contact Forms Campaign Pushes SSLoad Malware
SSLoad

2024-04-11 ⋅ Twitter (@embee_research) ⋅ Embee_research
Tracking Malicious Infrastructure With DNS Records - Vultur Banking Trojan
Vultur

2024-04-11 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
Rat King Configuration Parser
AsyncRAT DCRat Quasar RAT Venom RAT

2024-04-10 ⋅ IWcommunityFR
Leak of Epsilon Stealer's source code
Epsilon Stealer

2024-04-10 ⋅ 2024-04-10 ⋅ Antonio Pirozzi, Sarthak Misraa
XZ Utils Backdoor | Threat Actor Planned to Inject Further Vulnerabilities
xzbot

2024-04-10 ⋅ 0ffset Blog ⋅ Daniel Bunce
Resolving Stack Strings with Capstone Disassembler & Unicorn in Python
Conti

2024-04-10 ⋅ ESET Research ⋅ Lukáš Štefanko
eXotic Visit campaign: Tracing the footprints of Virtual Invaders
XploitSPY

2024-04-09 ⋅ eSentire ⋅ eSentire
Unraveling Not AZORult but Koi Loader: A Precursor to Koi Stealer
Koi Loader Koi Stealer

2024-04-09 ⋅ Claroty ⋅ Team82
Unpacking the Blackjack Group's Fuxnet Malware
BlackJack

2024-04-09 ⋅ Immersive Labs ⋅ Immersive Labs
Havoc C2 Framework – A Defensive Operator’s Guide
Havoc