Malpedia Library

2022-12-21 ⋅ Microsoft ⋅ Microsoft Security Threat Intelligence
Microsoft research uncovers new Zerobot capabilities
ZeroBot SparkRAT

2022-12-16 ⋅ Sekoia ⋅ Jamila B., Threat & Detection Research Team
The DPRK delicate sound of cyber
AppleJeus AppleJeus SnatchCrypto

2022-12-15 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
MCCrash: Cross-platform DDoS botnet targets private Minecraft servers
DEV-1028

2022-12-15 ⋅ ThreatFabric ⋅ ThreatFabric
BrasDex: A new Brazilian ATS Android Banker with ties to Desktop malware
BrasDex

2022-12-13 ⋅ Kroll ⋅ Dave Truman, George Glass, Keith Wojcieszek, Stephen Green
Threat Actors use Google Ads to Deploy VIDAR Stealer
Vidar

2022-12-12 ⋅ Felipe Tarijon ⋅ Felipe Tarijon
LimeRAT Malware Is Used For Targeting Unskilled Threat Actors
LimeRAT

2022-12-09 ⋅ Secureworks ⋅ SecureWorks' Counter Threat Unit Research Team
Drokbk Malware Uses GitHub as Dead Drop Resolver
Drokbk

2022-12-09 ⋅ Positive Technologies ⋅ PTSecurity
APT Cloud Atlas: Unbroken Threat

2022-12-08 ⋅ DeepInstinct ⋅ Deep Instinct Threat Lab, Simon Kenin
New MuddyWater Threat: Old Kitten; New Tricks

2022-12-08 ⋅ ThreatFabric ⋅ ThreatFabric
Zombinder: new obfuscation service used by Ermac, now distributed next to desktop stealers
ERMAC Xenomorph

2022-12-07 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
GootLoader Striking with a New Infection Technique
GootLoader

2022-12-07 ⋅ KnowBe4 ⋅ Stu Sjouwerman
Russian Threat Actor Impersonates Aerospace and Defense Companies
TAG-53

2022-12-06 ⋅ ⋅ 360 Threat Intelligence Center ⋅ 360 Beacon Lab
Analysis of suspected APT-C-56 (Transparent Tribe) attacks against terrorism
AhMyth Meterpreter SpyNote AsyncRAT

2022-12-05 ⋅ Sekoia ⋅ sekoia, Threat & Detection Research Team
Calisto show interests into entities involved in Ukraine war support

2022-12-05 ⋅ Cybereason ⋅ Kotaro Ogino, Ralph Villanueva, Robin Plumer
Threat Analysis: MSI - Masquerading as a Software Installer
Magniber Matanbuchus QakBot

2022-12-02 ⋅ Avast Decoded ⋅ Threat Intelligence Team
Hitching a ride with Mustang Panda
PlugX

2022-12-01 ⋅ splunk ⋅ Splunk Threat Research Team
From Macros to No Macros: Continuous Malware Improvements by QakBot
QakBot

2022-11-30 ⋅ ⋅ Qianxin Threat Intelligence Center ⋅ Red Raindrop Team
Analysis of APT29's attack activities against Italy
Unidentified 098 (APT29 Slack Downloader)

2022-11-25 ⋅ ThreatBook ⋅ ThreatBook
Analysis of APT-C-60 Attack on South Korea
Unidentified 100 (APT-Q-12)

2022-11-23 ⋅ Cybereason ⋅ Cybereason Global SOC Team
THREAT ALERT: Aggressive Qakbot Campaign and the Black Basta Ransomware Group Targeting U.S. Companies
Black Basta QakBot