Malpedia Library

Click here to download all references as Bib-File.•

2020-05-13 ⋅ Malpedia
Malpedia Family Page for Kiralock (Placeholder)

2020-05-13 ⋅ ESET Research ⋅ Ignacio Sanmillan
Ramsay: A cyber‑espionage toolkit tailored for air‑gapped networks
Ramsay Retro

2020-05-12 ⋅ Yet Another Security Blog ⋅ Michael Weber
Evading Detection with Excel 4.0 Macros and the BIFF8 XLS Format
Zloader

2020-05-12 ⋅ FireEye ⋅ Jacob Thompson
Analyzing Dark Crystal RAT, a C# backdoor
DCRat

2020-05-12 ⋅ Trend Micro ⋅ Joey Chen
Tropic Trooper’s Back: USBferry Attack Targets Air-gapped Environments (Technical Brief)
USBferry

2020-05-12 ⋅ Trend Micro ⋅ Joey Chen
Tropic Trooper’s Back: USBferry Attack Targets Air-gapped Environments
USBferry

2020-05-12 ⋅ US-CERT ⋅ US-CERT
MAR-10288834-1.v1 – North Korean Remote Access Tool: COPPERHEDGE
Bankshot

2020-05-11 ⋅ SecurityIntelligence ⋅ Limor Kessem, Nir Shwarts
Zeus Sphinx Back in Business: Some Core Modifications Arise
Zeus Sphinx

2020-05-11 ⋅ Palo Alto Networks Unit 42 ⋅ Alex Hinchliffe, Robert Falcone
Updated BackConfig Malware Targeting Government and Military Organizations in South Asia
VICEROY TIGER

2020-05-11 ⋅ Sudeep Singh
Targeted Attacks on Indian Government and Financial Institutions Using the JsOutProx RAT
EpicSplit RAT

2020-05-11 ⋅ Trend Micro ⋅ Gabrielle Joyce Mabutas, Kazuki Fujisawa
New MacOS Dacls RAT Backdoor Shows Lazarus’ Multi-Platform Attack Capability
Dacls

2020-05-11 ⋅ Zscaler ⋅ Sudeep Singh
Targeted Attacks on Indian Government and Financial Institutions Using the JsOutProx RAT
JSOutProx

2020-05-11 ⋅ SentinelOne ⋅ Gal Kristal
The Anatomy of an APT Attack and CobaltStrike Beacon’s Encoded Configuration
Cobalt Strike

2020-05-11 ⋅ Seguranca Informatica ⋅ Pedro Tavares
Trojan Lampion is back after 3 months
lampion

2020-05-11 ⋅ Trend Micro ⋅ Gabrielle Joyce Mabutas, Kazuki Fujisawa
New MacOS Dacls RAT Backdoor Show Lazarus’ Multi-Platform Attack Capability
Dacls

2020-05-07 ⋅ Council on Foreign Relations ⋅ Cyber Operations Tracker
Axiom
APT17

2020-05-07 ⋅ FireEye Inc ⋅ Jeremy Kennelly, Joshua Shilko, Kimberly Goody
Navigating the MAZE: Tactics, Techniques and Procedures Associated With MAZE Ransomware Incidents
Maze

2020-05-07 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweet on PeddleCheap packed with Winnti packer
PeddleCheap

2020-05-07 ⋅ Github (mlodic) ⋅ Matteo Lodi
Ursnif beacon decryptor
Gozi ISFB

2020-05-06 ⋅ Yoroi ⋅ Davide Testa, Luca Mella, Luigi Martire
New Cyber Operation Targets Italy: Digging Into the Netwire Attack Chain
NetWire RC