Malpedia Library

Click here to download all references as Bib-File.•

2021-10-19 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Jay Yaneza, Sherif Magdy
PurpleFox Adds New Backdoor That Uses WebSockets
FoxSocket PurpleFox

2021-10-19 ⋅ Kaspersky ⋅ Oleg Kupreev
Trickbot module descriptions
TrickBot

2021-10-19 ⋅ CrowdStrike ⋅ Dan Meyer, Jamie Harris
LightBasin: A Roaming Threat to Telecommunications Companies
LightBasin

2021-10-18 ⋅ NortonLifeLock ⋅ Norton Labs
Operation Exorcist - 7 Years of Targeted Attacks against the Roman Catholic Church
NewBounce PlugX Zupdax

2021-10-18 ⋅ Symantec ⋅ Threat Hunter Team
Harvester: Nation-state-backed group uses new toolset to target victims in South Asia
Cobalt Strike Graphon

2021-10-18 ⋅ Medium Confiant ⋅ Taha Karim
Profiling hackers using the Malvertising Attack Matrix by Confiant

2021-10-18 ⋅ Bleeping Computer ⋅ Bill Toulas
Suspected Chinese hackers behind attacks on ten Israeli hospitals

2021-10-18 ⋅ SentinelOne ⋅ Antonis Terefos
Karma Ransomware | An Emerging Threat With A Hint of Nemty Pedigree
Karma Nemty

2021-10-18 ⋅ CISA ⋅ US-CERT
Alert (AA21-291A): BlackMatter Ransomware
BlackMatter BlackMatter

2021-10-18 ⋅ paloalto Netoworks: Unit42 ⋅ Brad Duncan
Case Study: From BazarLoader to Network Reconnaissance
BazarBackdoor Cobalt Strike

2021-10-18 ⋅ The DFIR Report ⋅ The DFIR Report
IcedID to XingLocker Ransomware in 24 hours
Cobalt Strike IcedID Mount Locker

2021-10-17 ⋅ Bleeping Computer ⋅ Lawrence Abrams
REvil ransomware shuts down again after Tor sites were hijacked
REvil REvil

2021-10-15 ⋅ skyblue.team blog ⋅ skyblue team
Recovering registry hives encrypted by LockBit 2.0
LockBit

2021-10-15 ⋅ Volatility Labs ⋅ Volatility Labs
Memory Forensics R&D Illustrated: Detecting Mimikatz's Skeleton Key Attack
MimiKatz

2021-10-15 ⋅ ESET Research ⋅ ESET Research
Tweet on a malicious campaign targeting governmental and education entities in Colombia using multiple stages to drop AsyncRAT or njRAT Keylogger on their victims
AsyncRAT NjRAT

2021-10-15 ⋅ Trustwave ⋅ Lloyd Macrohon, Rodel Mendrez
BlackByte Ransomware – Pt 2. Code Obfuscation Analysis

2021-10-15 ⋅ Trustwave ⋅ Lloyd Macrohon, Rodel Mendrez
BlackByte Ransomware – Pt. 1 In-depth Analysis

2021-10-14 ⋅ Symantec ⋅ Threat Hunter Team
New Yanluowang ransomware used in targeted attacks
Yanluowang

2021-10-14 ⋅ Trustwave ⋅ Radoslaw Zdonczyk
A Handshake with MySQL Bots

2021-10-14 ⋅ YouTube (Uriel Kosayev) ⋅ Uriel Kosayev
DarkSide Ransomware Reverse Engineering
BlackMatter DarkSide BlackMatter DarkSide