Malpedia Library

2024-05-30 ⋅ Trend Micro ⋅ Sunil Bharti
Decoding Water Sigbin's Latest Obfuscation Tricks
Water Sigbin

2024-05-30 ⋅ Hunt.io ⋅ Hunt.io
SolarMarker: Hunt Insights and Findings
solarmarker

2024-05-30 ⋅ Akamai ⋅ Maxim Zavodchik, Ryan Barnett, Stiv Kupchik
RedTail Cryptominer Threat Actors Adopt PAN-OS CVE-2024-3400 Exploit
RedTail

2024-05-30 ⋅ Centurylink ⋅ Black Lotus Labs
The Pumpkin Eclipse
Chalubo

2024-05-30 ⋅ Europol ⋅ Europol
Largest ever operation against botnets hits dropper malware ecosystem
BumbleBee IcedID SmokeLoader SystemBC TrickBot

2024-05-30 ⋅ circleid ⋅ WhoisXML API
A DNS Investigation of the Phobos Ransomware 8Base Attack
8Base Phobos

2024-05-29 ⋅ Medium (DoingFedTime) ⋅ DoingFedTime
80-000 records exposed in shell data breach by threat actor
Threat Actor 888

2024-05-29 ⋅ eSentire ⋅ eSentire
Fake Browser Updates delivering BitRAT and Lumma Stealer
BitRAT Lumma Stealer

2024-05-28 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Moonstone Sleet emerges as new North Korean threat actor with new bag of tricks
splitloader

2024-05-28 ⋅ CyberSecurityNews ⋅ Dhivya
Threats Claimimg Breach of Decathlon May 2024 Database
Threat Actor 888

2024-05-28 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
BlackSuit Attack Analysis
BlackSuit

2024-05-26 ⋅ ZW01f ⋅ Mohamed Ezat
QakBOT v5 Deep Malware Analysis
QakBot

2024-05-24 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Stark Industries Solutions: An Iron Hammer in the Cloud

2024-05-23 ⋅ Twitter (@embee_research) ⋅ Embee_research
Tracking APT SideWinder With DNS Records
SideWinder

2024-05-23 ⋅ Check Point ⋅ Check Point
Chinese Espionage Campaign Expands to Target Africa and The Caribbean
5.t Downloader Cobalt Strike

2024-05-23 ⋅ Github (x-junior) ⋅ Mohamed Ashraf
String Decryptor for WarmCookie
WarmCookie

2024-05-23 ⋅ Github (x-junior) ⋅ Mohamed Ashraf
IDA Script for WarmCookie
WarmCookie

2024-05-23 ⋅ Palo Alto Networks Unit 42 ⋅ Daniel Frank, Lior Rochberger
Operation Diplomatic Specter: An Active Chinese Cyberespionage Campaign Leverages Rare Tool Set to Target Governmental Entities in the Middle East, Africa and Asia
Agent Racoon CHINACHOPPER Ghost RAT JuicyPotato MimiKatz Ntospy PlugX SweetSpecter TunnelSpecter CL-STA-0043

2024-05-23 ⋅ Checkpoint ⋅ Checkpoint Research
Sharp dragon expands towards africa and the caribbean
5.t Downloader Cobalt Strike

2024-05-22 ⋅ Mandiant ⋅ Michael Raggi
IOC Extinction? China-Nexus Cyber Espionage Actors Use ORB Networks to Raise Cost on Defenders