Malpedia Library

Click here to download all references as Bib-File.•

2025-08-08 ⋅ K7 Security ⋅ Azhagan K M S
Silent Watcher: Dissecting Cmimai Stealer’s VBS Payload
Cmimai Stealer

2025-08-08 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Distribution of SmartLoader Malware via Github Repository Disguised as a Legitimate Project
Rhadamanthys SmartLoader

2025-08-08 ⋅ Reverse The Malware ⋅ Diyar Saadi
Detecting and Identifying Hidden Processes (Volatility Edition)

2025-08-06 ⋅ IBM X-Force ⋅ Golo Mühr
Dissecting the CastleBot Malware-as-a-Service operation
CASTLELOADER NightshadeC2

2025-08-06 ⋅ Kaspersky ⋅ Dmitry Kalinin
Spyware that pretends to be an antivirus
LunaSpy

2025-08-06 ⋅ ANY.RUN ⋅ Mauro Eldritch
PyLangGhost RAT: Rising Stealer from Lazarus Group Striking Finance and Technology
PylangGhost GolangGhost

2025-08-06 ⋅ Silent Push ⋅ Silent Push
Unmasking SocGholish: Silent Push Untangles the Malware Web Behind the “Pioneer of Fake Updates” and Its Operator, TA569
FAKEUPDATES MintsLoader Parrot TDS Parrot TDS WebShell Raspberry Robin

2025-08-05 ⋅ Defentive ⋅ Defentive Threat Research
Lost in Translation: Threat Actors Use SEO Poisoning and Fake DeepL Sites to Distribute Gh0st RAT
Ghost RAT

2025-08-03 ⋅ Reverse The Malware ⋅ Diyar Saadi
Identifying a Domain Generation Algorithm

2025-08-03 ⋅ Reverse The Malware ⋅ Diyar Saadi
Gathering Indicators of Compromise Through Malware Datasets.

2025-08-01 ⋅ Infrawatch Research Team
Belarus-Linked DSLRoot Proxy Network Deploys Hardware in U.S. Residences, Including Military Homes

2025-08-01 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Hunting with 20 Urlscan.io Search Queries

2025-08-01 ⋅ Reverse The Malware ⋅ Diyar Saadi
Feeds of Indicators Of Compromise ( TweetFeed )

2025-07-31 ⋅ ThreatLocker ⋅ John Moutos, Rayton Li
SafePay ransomware explained: IOCs, TTPs, and defense strategies
SafePay

2025-07-31 ⋅ Intrinsec ⋅ CTI Intrinsec
Shadow syndicate infrastructure illumination
AMOS BlackCat Cactus Cicada3301 Clop LockBit PLAY RansomHub Royal Ransom Silence

2025-07-31 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats
ApolloShadow

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
WhatChanged ? : A Digital Forensics and Incident Response Suite

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
ArtiFast Forensics Artifacts Investigation - ShellBags

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
ArtiFast Forensics Investigation - USB Forensics

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence Through NRD's ( New Registered Domain )