Malpedia Library

Click here to download all references as Bib-File.•

2024-10-05 ⋅ Mandar Naik
Malware Analysis - Lumma Stealer
Lumma Stealer

2024-10-04 ⋅ VirusBulletin ⋅ Thibault Seret
Octopus Prime: it didn't turn into a truck, but a widely spread Android botnet
Coper

2024-10-04 ⋅ nikhilh-20 ⋅ Nikhil Hegde
Emansrepo Infostealer - PyInstaller, Deobfuscation and LLM
emansrepo

2024-10-03 ⋅ Virus Bulletin ⋅ Salim Bitam
Sugarcoating KANDYKORN: a sweet dive into a sophisticated MacOS backdoor
HLOADER KANDYKORN SUGARLOADER

2024-10-03 ⋅ CitizenLab ⋅ Alyson Bruce
Disrupting COLDRIVER: U.S. court orders seizure of domains used in Russian cyberattacks
Callisto

2024-10-03 ⋅ Securonix ⋅ Den Iyzvyk, Tim Peck
SHROUDED#SLEEP: A Deep Dive into North Korea’s Ongoing Campaign Against Southeast Asia

2024-10-03 ⋅ GitHub (dstepanic) ⋅ Daniel Stepanic
Getting Cozy with Milk and WARMCOOKIES
WarmCookie

2024-10-02 ⋅ Secureworks ⋅ SecureWorks
2024 State of the Threat
GOLD REBELLION

2024-10-02 ⋅ ThreatMon ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
Amnesia Stealer Technical Malware Analysis Report
BlankGrabber

2024-10-02 ⋅ ESET Research ⋅ Romain Dumont
Separating the bee from the panda: CeranaKeeper making a beeline for Thailand
PUBLOAD TONESHELL WavyExfiller CeranaKeeper

2024-10-01 ⋅ The Record ⋅ Alexander Martin
Eduard Benderskiy: Western authorities link Russian intelligence officer to Evil Corp cybercrime empire

2024-10-01 ⋅ raw-data memdumps ⋅ _raw_data_
BugSleep network protocol reversing
bugsleep

2024-09-30 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick 43: Shuffle malicious payload. Simple C example.

2024-09-30 ⋅ OALabs ⋅ Sergei Frankoff
Latrodectus Extracting new AES encrypted strings from this RAT
Latrodectus

2024-09-30 ⋅ X (@GenThreatLabs) ⋅ Gen Threat Labs
Tweet on FAKEUPDATES pushing WARMCOOKIE backdoor via compromised websites targeting France
FAKEUPDATES WarmCookie

2024-09-30 ⋅ The DFIR Report ⋅ The DFIR Report
Nitrogen Campaign Drops Sliver and Ends With BlackCat Ransomware
BlackCat Nitrogen Loader Sliver

2024-09-29 ⋅ nikhilh-20 ⋅ Nikhil Hegde
Process Injection in BugSleep Loader
bugsleep

2024-09-27 ⋅ Virus Bulletin ⋅ Lena Yu
CrackedCantil: A Malware Symphony Delivered By Cracked Software; Performed By Loaders, Infostealers, Ransomware, Et Al.
CrackedCantil

2024-09-26 ⋅ ESET Research ⋅ Zoltán Rusnák
Cyberespionage the Gamaredon way: Analysis of toolset used to spy on Ukraine in 2022 and 2023

2024-09-26 ⋅ cyble ⋅ Cyble
Nexe Backdoor Unleashed: Patchwork APT Group’s Sophisticated Evasion of Defenses