Malpedia Library

2022-11-25 ⋅ Github (struppigel) ⋅ Karsten Hahn
Python script to decode NightHawk strings
Nighthawk

2022-11-24 ⋅ ExploitReversing ⋅ Alexandre Borges
Malware Analysis Series (MAS): Article 6
Ave Maria

2022-11-24 ⋅ Twitter (@strinsert1Na) ⋅ MigawariIV
Tweet on recent Bifrose activity
Bifrost

2022-11-23 ⋅ Twitter (@RedDrip7) ⋅ RedDrip Team
Tweets about potential Lazarus sample
Unidentified 101 (Lazarus?)

2022-11-23 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Detailing Daily Domain Hunting

2022-11-23 ⋅ ESET Research ⋅ Lukáš Štefanko
Bahamut cybermercenary group targets Android users with fake VPN apps
Bahamut

2022-11-23 ⋅ Cybereason ⋅ Cybereason Global SOC Team
THREAT ALERT: Aggressive Qakbot Campaign and the Black Basta Ransomware Group Targeting U.S. Companies
Black Basta QakBot

2022-11-22 ⋅ Proofpoint ⋅ Alexander Rausch, Proofpoint Threat Research Team
Nighthawk: An Up-and-Coming Pentest Tool Likely to Gain Threat Actor Notice
Nighthawk

2022-11-22 ⋅ IBM Security ⋅ Charlotte Hammond
RansomExx upgrades to rust
RansomEXX RansomExx2

2022-11-22 ⋅ PolySwarm Tech Team ⋅ PolySwarm Tech Team
Phishing and Android Malware Campaign Targets Indian Banks
AxBanker

2022-11-22 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweets on SysUpdate / Soldier / HyperSSL
HyperSSL

2022-11-22 ⋅ The Record ⋅ Dina Temple-Raston
The Yanluowang ransomware group in their own words
Yanluowang

2022-11-21 ⋅ Sekoia ⋅ Pierre Le Bourhis, Quentin Bourgue, Threat & Detection Research Team
Aurora: a rising stealer flying under the radar
Aurora Stealer

2022-11-21 ⋅ vmware ⋅ Takahiro Haruyama, Threat Analysis Unit
Threat Analysis: Active C2 Discovery Using Protocol Emulation Part4 (Dacls, aka MATA)
Dacls

2022-11-21 ⋅ Risky.biz ⋅ Catalin Cimpanu
Risky Biz News: Cyber Partisans hack and disrupt Kremlin censor
Cyber Partisans

2022-11-21 ⋅ BSides Sydney ⋅ Thomas Roccia
X-Ray of Malware Evasion Techniques - Analysis, Dissection, Cure?
Emotet

2022-11-21 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Gamaredon Leverages Microsoft Office Docs to Target Ukraine Government and Military
Pteranodon

2022-11-21 ⋅ Palo Alto Networks Unit 42 ⋅ Kristopher Russo
Threat Assessment: Luna Moth Callback Phishing Campaign
BazarBackdoor Conti Luna Moth

2022-11-21 ⋅ Github (larsborn) ⋅ Lars Wallenborn
Tofsee String Decryption Code
Tofsee

2022-11-21 ⋅ Malwarebytes ⋅ Malwarebytes
2022-11-21 Threat Intel Report
404 Keylogger Agent Tesla Formbook Hive Remcos