Malpedia Library

Click here to download all references as Bib-File.•

2022-07-25 ⋅ Trend Micro ⋅ Byron Gelera, Ieriz Nicolle Gonzalez, Ivan Nicole Chavez, Katherine Casona, Nathaniel Gregory Ragasa, Nathaniel Morales
LockBit Ransomware Group Augments Its Latest Variant, LockBit 3.0, With BlackMatter Capabilities
BlackMatter LockBit

2022-07-25 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Mass distribution of desktops (Formbook, Snake Keylogger) and use of Malware RelicRace/RelicSource as a means of delivery (CERT-UA#5056)
404 Keylogger Formbook RelicRace

2022-07-25 ⋅ muha2xmad ⋅ Muhammad Hasan Ali
PDF Analysis of Lokibot malware
LokiBot

2022-07-25 ⋅ Kaspersky ⋅ GReAT
CosmicStrand: the discovery of a sophisticated UEFI firmware rootkit

2022-07-24 ⋅ bin.re ⋅ Johannes Bader
A DGA Seeded by the Bitcoin Genesis Block
Orchard

2022-07-24 ⋅ Bleeping Computer ⋅ Bill Toulas
QBot phishing uses Windows Calculator sideloading to infect devices
QakBot

2022-07-23 ⋅ BleepingComputer ⋅ Bill Toulas
North Korean hackers attack EU targets with Konni RAT malware
Konni

2022-07-22 ⋅ DataBreaches.net ⋅ Dissent
Recent cyberattacks put Thai citizens’ privacy and data security at greater risk
Desorden Group

2022-07-22 ⋅ MalwareBookReports ⋅ muzi
THE TRASH PANDA REEMERGES FROM THE DUMPSTER: RACCOON STEALER V2
RecordBreaker

2022-07-22 ⋅ vmware ⋅ Sneha Shekar
How Push Notifications are Abused to Deliver Fraudulent Links

2022-07-22 ⋅ Sekoia ⋅ Threat & Detection Research Team
CALISTO continues its credential harvesting campaign
Callisto

2022-07-22 ⋅ Yoroi ⋅ Carmelo Ragusa, Luigi Martire
On The Footsteps of Hive Ransomware
Hive Hive

2022-07-22 ⋅ Binary Ninja ⋅ Xusheng Li
Reverse Engineering a Cobalt Strike Dropper With Binary Ninja
Cobalt Strike

2022-07-22 ⋅ PWC UK ⋅ Krystle Reid
Old cat, new tricks, bad habits An analysis of Charming Kitten’s new tools and OPSEC errors
TelegramGrabber

2022-07-21 ⋅ Censys ⋅ Matt Lembright
Russian Ransomware C2 Network Discovered in Censys Data
DeimosC2 PoshC2

2022-07-21 ⋅ Blackberry ⋅ Mark Stevens, Rocky De Wiest
The 13 Deadly Sins of APT Incident Response — Part 1

2022-07-21 ⋅ AhnLab ⋅ ASEC
Amadey Bot Being Distributed Through SmokeLoader
Amadey SmokeLoader

2022-07-21 ⋅ cocomelonc
Malware development tricks. Run shellcode like a Lazarus Group. C++ example.

2022-07-21 ⋅ Silentpush ⋅ Silent Push
It’s time to close the door on open directories

2022-07-21 ⋅ Avast Decoded ⋅ Jan Vojtěšek
The Return of Candiru: Zero-days in the Middle East
Caramel Tsunami