Malpedia Library

Click here to download all references as Bib-File.•

2022-06-24 ⋅ Group-IB ⋅ Albert Priego
We see you, Gozi Hunting the latest TTPs used for delivering the Trojan
ISFB

2022-06-24 ⋅ Silent Push ⋅ Silent Push
“We need to talk about subdomain takeovers…”

2022-06-24 ⋅ Github (x-junior) ⋅ Mohamed Ashraf
Deep Analysis of Snake Keylogger
404 Keylogger

2022-06-24 ⋅ XJunior ⋅ Mohamed Ashraf
APT34 - Saitama Agent
Saitama Backdoor

2022-06-24 ⋅ Soc Investigation ⋅ BalaGanesh
IcedID Banking Trojan returns with new TTPS – Detection & Response
IcedID

2022-06-24 ⋅ Palo Alto Networks Unit 42 ⋅ Mark Lim, Riley Porter
There Is More Than One Way to Sleep: Dive Deep Into the Implementations of API Hammering by Various Malware Families
BazarBackdoor Zloader

2022-06-24 ⋅ AhnLab ⋅ ASEC
LockBit Ransomware Disguised as Copyright Claim E-mail Being Distributed
LockBit

2022-06-24 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyberattack against Ukrainian telecommunications operators using DarkCrystal RAT malware (CERT-UA # 4874)
DCRat Sandworm

2022-06-23 ⋅ CrowdStrike ⋅ Patrick Bennett
The Call Is Coming from Inside the House: CrowdStrike Identifies Novel Exploit in VOIP Appliance (CVE-2022-29499)

2022-06-23 ⋅ InQuest ⋅ Pedram Amini
Follina, the Latest in a Long Chain of Microsoft Office Exploits

2022-06-23 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
BRONZE STARLIGHT Ransomware Operations Use HUI Loader
ATOMSILO Cobalt Strike HUI Loader LockFile NightSky Pandora PlugX Quasar RAT Rook SodaMaster BRONZE STARLIGHT

2022-06-23 ⋅ splunk ⋅ Splunk Threat Research Team
Threat Update: Industroyer2
INDUSTROYER2

2022-06-23 ⋅ cyble ⋅ Cyble Research Labs
Matanbuchus Loader Resurfaces
Cobalt Strike Matanbuchus

2022-06-23 ⋅ Google ⋅ Benoit Sevens, Clement Lecigne, Google Threat Analysis Group
Spyware vendor targets users in Italy and Kazakhstan
Hermit

2022-06-23 ⋅ Google ⋅ Google Project Zero, Ian Beer
The curious tale of a fake Carrier.app

2022-06-23 ⋅ Kaspersky ⋅ Danila Nasonov, Natalya Shornikova, Nikita Nazarov, Vasily Davydov, Vladislav Burtsev
The hateful eight: Kaspersky’s guide to modern ransomware groups’ TTPs
Conti Hive BlackByte BlackCat Clop LockBit Mespinoza Ragnarok

2022-06-23 ⋅ Trellix ⋅ Christiaan Beek
The Sound of Malware
Conti VHD Ransomware

2022-06-23 ⋅ Kaspersky ⋅ Danila Nasonov, Natalya Shornikova, Nikita Nazarov, Vasily Davydov, Vladislav Burtsev
The hateful eight: Kaspersky’s guide to modern ransomware groups’ TTPs (Download Form)
BlackByte BlackCat Clop Conti Hive LockBit Mespinoza RagnarLocker

2022-06-22 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyberattacks by China-associated groups against Russian scientific and technical enterprises and government agencies (CERT-UA#4860)
QUICKMUTE

2022-06-21 ⋅ Enum0x539
Qvoid-Token-Grabber
QvoidStealer