Malpedia Library

Click here to download all references as Bib-File.•

2022-05-24 ⋅ BitSight ⋅ BitSight, João Batista, Pedro Umbelino
Emotet Botnet Rises Again
Cobalt Strike Emotet QakBot SystemBC

2022-05-24 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Yashma Ransomware, Tracing the Chaos Family Tree
Chaos

2022-05-23 ⋅ Trend Micro ⋅ Daniel Lunghi, Jaromír Hořejší
Operation Earth Berberoka
reptile oRAT Ghost RAT PlugX pupy Earth Berberoka

2022-05-23 ⋅ Trend Micro ⋅ Trend Micro Research
LockBit, Conti, and BlackCat Lead Pack Amid Rise in Active RaaS and Extortion Groups: Ransomware in Q1 2022 (PDF)
BlackCat Conti LockBit

2022-05-23 ⋅ Silentpush ⋅ Silentpush
Fake Trading Apps

2022-05-23 ⋅ Trend Micro ⋅ Matsugaya Shingo
LockBit, Conti, and BlackCat Lead Pack Amid Rise in Active RaaS and Extortion Groups: Ransomware in Q1 2022
BlackCat Conti LockBit

2022-05-23 ⋅ DCSO ⋅ Colin Murphy, Johann Aydinbas
A deal with the devil: Analysis of a recent Matanbuchus sample
Matanbuchus

2022-05-22 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 29: Store binary data in registry. Simple C++ example.
Turla RAT PILLOWMINT PipeMon

2022-05-22 ⋅ R136a1 ⋅ Dominik Reichel
Introduction of a PE file extractor for various situations
Cobalt Strike Matanbuchus

2022-05-22 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Google: Predator spyware infected Android devices using zero-days
Alien Chrysaor

2022-05-22 ⋅ Bleeping Computer ⋅ Bill Toulas
PDF smuggles Microsoft Word doc to drop Snake Keylogger malware
404 Keylogger

2022-05-21 ⋅ Github (x-junior) ⋅ Mohamed Ashraf
Deep Analysis of Mars Stealer
Mars Stealer

2022-05-20 ⋅ VinCSS ⋅ Dang Dinh Phuong, m4n0w4r, Tran Trung Kien
[RE027] China-based APT Mustang Panda might have still continued their attack activities against organizations in Vietnam
PlugX

2022-05-20 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others)
Bashlite Mirai PerlBot

2022-05-20 ⋅ nccgroup ⋅ Peter Gurney
Metastealer – filling the Racoon void
MetaStealer

2022-05-20 ⋅ SANS ISC ⋅ Xavier Mertens
A 'Zip Bomb' to Bypass Security Controls & Sandboxes
BitRAT

2022-05-20 ⋅ AdvIntel ⋅ Marley Smith, Vitali Kremez, Yelisey Boguslavskiy
DisCONTInued: The End of Conti’s Brand Marks New Chapter For Cybercrime Landscape
AvosLocker Black Basta BlackByte BlackCat Conti HelloKitty Hive

2022-05-20 ⋅ CrowdStrike ⋅ Vlad Ciuleanu
Mirai Malware Variants for Linux Double Down on Stronger Chips in Q1 2022
Mirai

2022-05-20 ⋅ sonatype ⋅ Ax Sharma
New 'pymafka' malicious package drops Cobalt Strike on macOS, Windows, Linux
Cobalt Strike

2022-05-20 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Cytrox's Predator Spyware Targeted Android Users with Zero-Day Exploits