Malpedia Library

Click here to download all references as Bib-File.•

2022-04-19 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: Legitimate WordPress Site Hosts Malicious Content
AsyncRAT

2022-04-19 ⋅ Fortinet ⋅ Gergely Revay
Using Emulation Against Anti-Reverse Engineering Techniques
Pandora

2022-04-19 ⋅ Blake's R&D ⋅ bmcder02
Extracting Cobalt Strike from Windows Error Reporting
Cobalt Strike

2022-04-19 ⋅ 0ffset Blog ⋅ Chuong Dong
BAZARLOADER: Unpacking An ISO File Infection
BazarBackdoor

2022-04-19 ⋅ Bleeping Computer ⋅ Bill Toulas
Emotet botnet switches to 64-bit modules, increases activity
Emotet

2022-04-19 ⋅ Twitter (@Cryptolaemus1) ⋅ Cryptolaemus
#Emotet Update: 64 bit upgrade of Epoch 5
Emotet

2022-04-19 ⋅ cyble ⋅ Cyble
Fake MetaMask App Steals Cryptocurrency

2022-04-18 ⋅ AdvIntel ⋅ Vitali Kremez, Yelisey Boguslavskiy
Enter KaraKurt: Data Extortion Arm of Prolific Ransomware Group
AvosLocker BazarBackdoor BlackByte BlackCat Cobalt Strike HelloKitty Hive Karakurt

2022-04-18 ⋅ National Intelligence University ⋅ Kevin P. Riehle
Russian Intelligence: A Case-based Study of Russian Services and Missions Past and Present

2022-04-18 ⋅ InQuest ⋅ Dmitry Melikov
Nobelium - Israeli Embassy Maldoc

2022-04-18 ⋅ Bitdefender ⋅ Mihai Neagu
RedLine Stealer Analysis
RedLine Stealer

2022-04-18 ⋅ CISA ⋅ CISA, FBI, U.S. Department of the Treasury
Alert (AA22-108A): TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
Bankshot

2022-04-18 ⋅ Kaspersky ⋅ AMR
How to recover files encrypted by Yanlouwang
Yanluowang

2022-04-18 ⋅ vanmieghem ⋅ Vincent Van Mieghem
A blueprint for evading industry leading endpoint protection in 2022
Cobalt Strike

2022-04-18 ⋅ CitizenLab ⋅ Bahr Abdul Razzak, Bill Marczak, Elies Campo, Gözde Böcü, John Scott-Railton, Ron Deibert, Salvatore Solimano, Siena Anstis
CatalanGate Extensive Mercenary Spyware Operation against Catalans Using Pegasus and Candiru
Chrysaor Caramel Tsunami

2022-04-18 ⋅ Fortinet ⋅ Erin Lin
Trends in the Recent Emotet Maldoc Outbreak
Emotet

2022-04-18 ⋅ Cyble
Under The Lens: Eagle Monitor RAT - Upgraded Version Of RAT With New TTPs
EagleMonitorRAT

2022-04-18 ⋅ Trellix ⋅ Alexandre Mundo, Jambul Tologonov, Marc Elias
Conti Group Targets ESXi Hypervisors With its Linux Variant
Conti Conti

2022-04-18 ⋅ Trend Micro ⋅ Leandro Froes, Lucas Silva
An Investigation of the BlackCat Ransomware via Trend Micro Vision One
BlackCat

2022-04-18 ⋅ RiskIQ ⋅ Jennifer Grob
RiskIQ: Trickbot Rickroll
TrickBot