Malpedia Library

Click here to download all references as Bib-File.•

2020-03-10 ⋅ Microsoft ⋅ Tom Burt
New action to disrupt world’s largest online criminal network
Necurs

2020-03-05 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
ELF_TSCookie - Linux Malware Used by BlackTech
TSCookie

2020-02-22 ⋅ Objective-See ⋅ Patrick Wardle
Weaponizing a Lazarus Group Implant: repurposing a 1st-stage loader, to execute custom 'fileless' payloads
AppleJeus

2020-02-18 ⋅ Personal Blog of Christophe Tafani-Dereeper ⋅ Christophe Tafani-Dereeper
Hidden in PEB Sight: Hiding Windows API Imports With a Custom Loader

2020-02-05 ⋅ FireEye ⋅ Andrew Moore, Blaine Stancill, Genevieve Stark, Rick Cole
STOMP 2 DIS: Brilliance in the (Visual) Basics
MINEBRIDGE

2020-01-26 ⋅ Youtube (OALabs) ⋅ Sean Wilson, Sergei Frankoff
IDA Pro Automated String Decryption For REvil Ransomware
REvil

2020-01-23 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Sodinokibi Ransomware Threatens to Publish Data of Automotive Group
REvil

2020-01-21 ⋅ Palo Alto Networks Unit 42 ⋅ Asher Davila, Cong Zheng, Yang Ji
Muhstik Botnet Attacks Tomato Routers to Harvest New IoT Devices
Tsunami

2020-01-07 ⋅ Bitdefender ⋅ Liviu Arsene
Hold My Beer Mirai – Spinoff Named ‘LiquorBot’ Incorporates Cryptomining
LiquorBot

2020-01-01 ⋅ FireEye ⋅ Mandiant, Mitchell Clarke, Tom Hall
Mandiant IR Grab Bag of Attacker Activity
TwoFace CHINACHOPPER HyperBro HyperSSL

2019-12-18 ⋅ US District Court for the Eastern District of Virginia
MICROSOFT CORPORATION, Plaintiff, v. JOHN DOES 1-2, CONTROLLING A COMPUTER NETWORK THEREBY INJURING PLAINTIFF AND ITS CUSTOMERS
BabyShark Kimsuky

2019-12-17 ⋅ Palo Alto Networks Unit 42 ⋅ Jen Miller-Osborn, Mike Harbison
Rancor: Cyber Espionage Group Uses New Custom Malware to Attack Southeast Asia
DDKONG Derusbi KHRAT

2019-11-26 ⋅ ESET Research ⋅ Vladislav Hrčka
Stantinko botnet adds cryptomining to its pool of criminal activities
Stantinko