Malpedia Library

Click here to download all references as Bib-File.•

2022-04-06 ⋅ Github (infinitumlabs) ⋅ Arda Büyükkaya
Karakurt Hacking Team Indicators of Compromise (IOC)
Cobalt Strike

2022-04-06 ⋅ Medium mars0x ⋅ Mars
WannaHusky Malware Analysis w/ YARA + TTPs
WannaHusky

2022-04-06 ⋅ ESET Research ⋅ Lukáš Štefanko
Fake e‑shops on the prowl for banking credentials using Android malware
Unidentified APK 008

2022-04-06 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
US disrupts Russian Cyclops Blink botnet before being used in attacks
CyclopsBlink

2022-04-05 ⋅ Symantec ⋅ Threat Hunter Team
Cicada: Chinese APT Group Widens Targeting in Recent Espionage Activity
MimiKatz APT10

2022-04-05 ⋅ NetbyteSEC ⋅ Fareed, Rosamira, Taqi
RTF template injection sample targeting Malaysia

2022-04-05 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Earle Earnshaw, Ian Kenefick, Lucas Silva, Mohamed Fahmy, Ryan Maglaque
Thwarting Loaders: From SocGholish to BLISTER’s LockBit Payload
Blister LockBit

2022-04-05 ⋅ Malwarebytes Labs ⋅ Ankur Saini, Hossein Jazi, Jérôme Segura
Colibri Loader combines Task Scheduler and PowerShell in clever persistence technique
Colibri Loader Mars Stealer

2022-04-05 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
eSentire Threat Intelligence Malware Analysis: HeaderTip
HeaderTip

2022-04-05 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
eSentire Threat Intelligence Malware Analysis: DoubleZero
DoubleZero

2022-04-05 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Earle Maui Earnshaw, Ian Kenefick, Lucas Silva, Mohamed Fahmy, Ryan Maglaque
Thwarting Loaders: From SocGholish to BLISTER’s LockBit Payload
FAKEUPDATES Blister LockBit

2022-04-05 ⋅ US Department of Justice ⋅ Department of Justice
Justice Department Investigation Leads to Shutdown of Largest Online Darknet Marketplace

2022-04-05 ⋅ US Department of Justice ⋅ Department of Justice
Indictment of Dmitry Olegovich Pavlov in connection with his operation and administration of the servers used to run Hydra

2022-04-05 ⋅ Medium jsecurity101 ⋅ Jonathan Johnson
Bypassing Access Mask Auditing Strategies

2022-04-05 ⋅ AhnLab ⋅ ASEC Analysis Team
Malicious Word Documents Using MS Media Player (Impersonating AhnLab)

2022-04-05 ⋅ Bundeskriminalamt ⋅ BKA (Bundeskriminalamt)
Illegal darknet marketplace "Hydra Market" shut down

2022-04-05 ⋅ cyble ⋅ Cyble
A New Info Stealer Targeting Over 30 Browsers
Lightning Stealer

2022-04-05 ⋅ Expel ⋅ Brian Bahtiarian, Britton Manahan, David Blanton, Kyle Pellett
Incident report: From CLI to console, chasing an attacker in AWS

2022-04-05 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Information on cyberattacks aimed at gaining access to Telegram accounts (CERT-UA#4360)
UAC-0094