Malpedia Library

Click here to download all references as Bib-File.•

2022-06-27 ⋅ Socialist Republic of Vietnam ⋅ Information Department of Information Security
V/v to review and prevent risks attack APT
Aoqin Dragon

2022-06-27 ⋅ VirusTotal ⋅ VirusTotal
Deception at scale: How malware abuses trust

2022-06-27 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Unpacking a JsonPacker-packed sample
Xenomorph

2022-06-27 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Spotlight: Eternity Project MaaS Goes On and On
Eternity Stealer

2022-06-27 ⋅ Netskope ⋅ Gustavo Palazolo
Emotet: Still Abusing Microsoft Office Macros
Emotet

2022-06-27 ⋅ InQuest ⋅ Isabelle Quinn
GlowSand

2022-06-27 ⋅ Cleafy ⋅ Cleafy
Revive: from spyware to Android banking trojan
Revive

2022-06-27 ⋅ Zscaler ⋅ Sahil Antil, Sudeep Singh
Return of the Evilnum APT with updated TTPs and new targets
EVILNUM EVILNUM

2022-06-27 ⋅ Kaspersky ICS CERT ⋅ Artem Snegirev, Kirill Kruglov
Attacks on industrial control systems using ShadowPad
Cobalt Strike PlugX ShadowPad

2022-06-26 ⋅ BushidoToken
Overview of Russian GRU and SVR Cyberespionage Campaigns 1H 2022
Cobalt Strike CredoMap EnvyScout

2022-06-24 ⋅ Group-IB ⋅ Albert Priego
We see you, Gozi Hunting the latest TTPs used for delivering the Trojan
ISFB

2022-06-24 ⋅ Silent Push ⋅ Silent Push
“We need to talk about subdomain takeovers…”

2022-06-24 ⋅ Github (x-junior) ⋅ Mohamed Ashraf
Deep Analysis of Snake Keylogger
404 Keylogger

2022-06-24 ⋅ XJunior ⋅ Mohamed Ashraf
APT34 - Saitama Agent
Saitama Backdoor

2022-06-24 ⋅ Soc Investigation ⋅ BalaGanesh
IcedID Banking Trojan returns with new TTPS – Detection & Response
IcedID

2022-06-24 ⋅ Palo Alto Networks Unit 42 ⋅ Mark Lim, Riley Porter
There Is More Than One Way to Sleep: Dive Deep Into the Implementations of API Hammering by Various Malware Families
BazarBackdoor Zloader

2022-06-24 ⋅ AhnLab ⋅ ASEC
LockBit Ransomware Disguised as Copyright Claim E-mail Being Distributed
LockBit

2022-06-24 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyberattack against Ukrainian telecommunications operators using DarkCrystal RAT malware (CERT-UA # 4874)
DCRat Sandworm

2022-06-23 ⋅ CrowdStrike ⋅ Patrick Bennett
The Call Is Coming from Inside the House: CrowdStrike Identifies Novel Exploit in VOIP Appliance (CVE-2022-29499)

2022-06-23 ⋅ InQuest ⋅ Pedram Amini
Follina, the Latest in a Long Chain of Microsoft Office Exploits