Malpedia Library

Click here to download all references as Bib-File.•

2024-11-08 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]baldinger-ag[.]ch
APT73

2024-11-07 ⋅ Cisco Talos ⋅ Aliza Johnson, Chetan Raghuprasad, Elio Biasiotto, Michael Szeliga
Unwrapping the emerging Interlock ransomware attack
Interlock Rhysida

2024-11-07 ⋅ ESET Research ⋅ ESET Research
APT Activity Report: Abusing Cloud Services and VPN Platforms in the Pursuit of New Prey
FrostyNeighbor

2024-11-06 ⋅ Cloudsek ⋅ Cloudsek
Mozi Resurfaces as Androxgh0st Botnet: Unraveling The Latest Exploitation Wave
Mozi

2024-11-06 ⋅ YouTube ( Hexacon) ⋅ Clement Lecigne, Google Threat Analysis Group
Caught in the wild - Past, present and future

2024-11-06 ⋅ Kaspersky Labs ⋅ Kirill Korchemny
New SteelFox Trojan mimics software activators, stealing sensitive data and mining cryptocurrency

2024-11-05 ⋅ Hunt.io ⋅ Hunt.io
RunningRAT’s Next Move: From Remote Access to Crypto Mining for Profit
Running RAT

2024-11-04 ⋅ Securonix ⋅ Den Iyzvyk, Tim Peck
CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging
Chisel

2024-11-01 ⋅ LevelBlue ⋅ Fernando Martinez
Ngioweb Remains Active 7 Years Later
Ngioweb

2024-10-31 ⋅ Twitter (@MonThreat) ⋅ ThreatMon
Tweet about EvilByte claiming to have hacked MyFatoorah
Evilbyte

2024-10-31 ⋅ Sophos X-Ops ⋅ Ross McKerchar
Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats
Asnarök

2024-10-31 ⋅ Sophos X-Ops ⋅ Andrew Brandt, Ross McKerchar
Pacific Rim timeline: Information for defenders from a braid of interlocking attack campaigns
Asnarök Tstark

2024-10-31 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network
Storm-0940

2024-10-31 ⋅ nikhilh-20 ⋅ Nikhil Hegde
Deobfuscating JavaScript Malware Using Abstract Syntax Trees
MintsLoader

2024-10-30 ⋅ EclecticIQ ⋅ EclecticIQ Threat Research Team
Inside Intelligence Center: LUNAR SPIDER Enabling Ransomware Attacks on Financial Sector with Brute Ratel C4 and Latrodectus
BlackCat Brute Ratel C4 Latrodectus

2024-10-30 ⋅ Cyber Press ⋅ Anupriya
DarkRaaS Ransomware Group Allegedly Selling Login Access to Oil & Gas Company
DarkRaaS

2024-10-29 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]scopeset[.]de
APT73

2024-10-29 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]trinitesolutions[.]com
APT73

2024-10-29 ⋅ RedPacket Security ⋅ RedPacket Security
[APT73] – Ransomware Victim: www[.]legilog[.]fr
APT73

2024-10-29 ⋅ RedPacket Security ⋅ RedPacket Security
https://www.redpacketsecurity.com/apt73-ransomware-victim-sokkakreatif-com/
APT73