Malpedia Library

Click here to download all references as Bib-File.•

2020-10-01 ⋅ US-CERT ⋅ US-CERT
Malware Analysis Report (AR20-275A): Remote Access Trojan: SLOTHFULMEDIA
SlothfulMedia

2020-09-30 ⋅ Aqua Nautilus ⋅ Assaf Morag
Threat Alert: TeamTNT is Back and Attacking Vulnerable Redis Servers
TeamTNT

2020-09-30 ⋅ Qihoo 360 Technology ⋅ Ya Liu
Lightweight Emulation based IOC Extraction for Gafgyt Botnets
Bashlite

2020-09-30 ⋅ Team Cymru ⋅ Jacomo Piccolini, James Shank
Pandamic: Emissary Pandas in the Middle East
HyperBro HyperSSL

2020-09-30 ⋅ CERT-XLM ⋅ Paul Jung
Another Threat Actor day...
SDBbot

2020-09-30 ⋅ FBI ⋅ FBI
Alert Number I-093020-PSA: Distributed Denial of Service Attacks Could Hinder Access to Voting Information, Would Not Prevent Voting

2020-09-29 ⋅ PWC UK ⋅ Andy Auld
What's behind the increase in ransomware attacks this year?
DarkSide Avaddon Clop Conti DoppelPaymer Dridex Emotet FriedEx Mailto PwndLocker QakBot REvil Ryuk SMAUG SunCrypt TrickBot WastedLocker

2020-09-29 ⋅ CrowdStrike ⋅ Kareem Hamdan, Lucas Miller
Getting the Bacon from the Beacon
Cobalt Strike

2020-09-29 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
TA2552 Uses OAuth Access Token Phishing to Exploit Read-Only Risks
TA2552

2020-09-29 ⋅ Zscaler ⋅ Sahil Antil, Sudeep Singh
Targeted Attacks on Oil and Gas Supply Chain Industries in the Middle East
Azorult

2020-09-28 ⋅ FBI ⋅ FBI
Alert Number I-092820-PSA: False Claims of Hacked Voter Information Likely Intended to Cast Doubt on Legitimacy of U.S. Elections

2020-09-28 ⋅ fmmresearch wordpress ⋅ Facundo Muñoz
The Emerald Connection: EquationGroup collaboration with Stuxnet
Fanny Stuxnet

2020-09-28 ⋅ fmmresearch wordpress ⋅ Facundo Muñoz
The Emerald Connection: Equation Group collaboration with Stuxnet
Fanny Stuxnet

2020-09-26 ⋅ Objective-See ⋅ Patrick Wardle
FinFisher Filleted: a triage of the FinSpy (macOS) malware
FinFisher

2020-09-25 ⋅ Netlab ⋅ Alex Turing, Hui Wang
Ghost in action: the Specter botnet
Specter

2020-09-25 ⋅ StateScoop ⋅ Benjamin Freed
Baltimore ransomware attack was early attempt at data extortion, new report shows
Maze RobinHood OUTLAW SPIDER

2020-09-25 ⋅ 360 Total Security ⋅ kate
APT-C-43 steals Venezuelan military secrets to provide intelligence support for the reactionaries - HpReact campaign
PyArk El Machete

2020-09-25 ⋅ Amnesty International ⋅ Amnesty International
German-made FinSpy spyware found in Egypt, and Mac and Linux versions revealed
FinFisher FinFisher FinFisher FinFisher RAT

2020-09-24 ⋅ SophosLabs ⋅ SophosLabs
Email-delivered MoDi RAT attack pastes PowerShell commands
MoDi RAT

2020-09-24 ⋅ US-CERT ⋅ US-CERT
Analysis Report (AR20-268A): Federal Agency Compromised by Malicious Cyber Actor
Cobalt Strike Meterpreter