Malpedia Library

Click here to download all references as Bib-File.•

2020-08-20 ⋅ CERT-FR ⋅ CERT-FR
Development of the Activity of the TA505 Cybercriminal Group
AndroMut Bart Clop Dridex FlawedAmmyy FlawedGrace Get2 Locky Marap QuantLoader SDBbot ServHelper tRat TrickBot

2020-08-20 ⋅ Bitdefender ⋅ Alexandru Maximciuc, Bogdan Rusu, Cristina Vatamanu, Liviu Arsene, Victor Vrabie
More Evidence of APT Hackers-for-Hire Usedfor Industrial Espionage

2020-08-20 ⋅ ⋅ Seebug Paper ⋅ Malayke
Use ZoomEye to track multiple Redteam C&C post-penetration attack frameworks
Cobalt Strike Empire Downloader PoshC2

2020-08-19 ⋅ CISA ⋅ CISA
MAR-10295134-1.v1 - North Korean Remote Access Trojan: BLINDINGCAN
BLINDINGCAN

2020-08-18 ⋅ CUJOAI ⋅ 0xffff0800, Albert Zsigovits, Alexey Vishnyakov
UPX Anti-Unpacking Techniques in IoT Malware
Mozi

2020-08-18 ⋅ Menlo Security ⋅ Krishnan Subramanian
New Attack Alert: Duri

2020-08-17 ⋅ Aqua ⋅ Yaniv Agman
Uncover Malware Payload Executions Automatically with Tracee

2020-08-16 ⋅ kienmanowar Blog ⋅ m4n0w4r
Manual Unpacking IcedID Write-up
IcedID

2020-08-14 ⋅ NSA ⋅ NSA
Drovorub Malware: Fact Sheet & FAQs

2020-08-13 ⋅ Trend Micro ⋅ Mac Threat Response and Mobile Research Team
The XCSSET Malware: Inserts Malicious Code Into Xcode Projects, Performs UXSS Backdoor Planting in Safari, and Leverages Two Zero-day Exploits (Technical Brief)
XCSSET

2020-08-13 ⋅ Trend Micro ⋅ Mac Threat Response and Mobile Research Team
XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits
XCSSET

2020-08-13 ⋅ SentinelOne ⋅ SentinelLabs
Case Study: Catching a Human-Operated Maze Ransomware Attack In Action
Maze

2020-08-13 ⋅ Kaspersky Labs ⋅ Konstantin Zykov
CactusPete APT group’s updated Bisonal backdoor
Korlia Tonto Team

2020-08-12 ⋅ SophosLabs Uncut ⋅ Sean Gallagher
Color by numbers: inside a Dharma ransomware-as-a-service attack
Dharma

2020-08-12 ⋅ Juniper ⋅ Paul Kimayong
IcedID Campaign Strikes Back
IcedID

2020-08-12 ⋅ ⋅ HackDig
Antiy's analysis report on the recent APT attacks against the Green Spot organization

2020-08-11 ⋅ FireEye ⋅ Alex Pennino, Brendan McKeague, Harris Ansari, Nick Schroeder, Tim Martin
COOKIEJAR: Tracking Adversaries With FireEye Endpoint Security’s Logon Tracker Module

2020-08-10 ⋅ ZDNet ⋅ Catalin Cimpanu
FBI says an Iranian hacking group is attacking F5 networking devices
SSHNET Fox Kitten

2020-08-10 ⋅ FR3D.HK ⋅ Fred HK
DiamondFox - Bank Robbers will be replaced
DiamondFox

2020-08-10 ⋅ ZDNet ⋅ Catalin Cimpanu
FBI says an Iranian hacking group is attacking F5 networking devices
MimiKatz