Malpedia Library

Click here to download all references as Bib-File.•

2022-04-08 ⋅ Infinitum Labs ⋅ Arda Büyükkaya
Threat Spotlight: Conti Ransomware Group Behind the Karakurt Hacking Team
Cobalt Strike MimiKatz

2022-04-07 ⋅ Sekoia ⋅ Pierre Le Bourhis, Quentin Bourgue, Threat & Detection Research Team
Mars, a red-hot information stealer
Mars Stealer

2022-04-07 ⋅ Github (Jhangju) ⋅ Jhangju
office-node (OFFODE) - This is POC of how an attacker automate user's responce and bypass outlook
OFFODE

2022-04-07 ⋅ Medium osamaellahi ⋅ Osama Ellahi
Bypass Multi Factor Authentication (MFA) of OUTLOOK
Evilginx

2022-04-07 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Cyber attack of the UAC-0010 group (Armageddon) on the state organizations of Ukraine (CERT-UA#4434)
Gamaredon Group

2022-04-07 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Hamas-linked Hackers Targeting High-Ranking Israelis Using 'Catfish' Lures

2022-04-07 ⋅ Perception Point ⋅ Igal Lytzki
Revenge RAT Malware is back: From Microsoft Excel macros to Remote Access Trojan
Revenge RAT

2022-04-07 ⋅ Malpedia ⋅ Malpedia
Malpedia Page for GraphSteel
GraphSteel SaintBear

2022-04-07 ⋅ splunk ⋅ Splunk Threat Research Team
You Bet Your Lsass: Hunting LSASS Access
Cobalt Strike MimiKatz

2022-04-07 ⋅ InQuest ⋅ Nick Chalard, Will MacArthur
Ukraine CyberWar Overview
CyclopsBlink Cobalt Strike GraphSteel GrimPlant HermeticWiper HermeticWizard MicroBackdoor PartyTicket Saint Bot Scieron WhisperGate

2022-04-07 ⋅ Kaspersky ⋅ GReAT
A Bad Luck BlackCat
BlackCat

2022-04-07 ⋅ ANALYST1 ⋅ Jon DiMaggio
North Korea: Intelligence Assessment 2022

2022-04-07 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: AvosLocker Prompts Advisory from FBI and FinCEN
Avoslocker AvosLocker

2022-04-07 ⋅ clearskysec ⋅ ClearSky Research Team
Exposing the Iranian EvilNominatus Ransomware

2022-04-07 ⋅ Team Cymru ⋅ Josh Hopkins
MoqHao Part 2: Continued European Expansion
MoqHao

2022-04-07 ⋅ Microsoft ⋅ Tom Burt
Disrupting cyberattacks targeting Ukraine (APT28)

2022-04-07 ⋅ Twitter (@ChicagoCyber) ⋅ Joshua Miller
Tweet on TA455 (Iranian threat actor) IoCs

2022-04-07 ⋅ The Hacker News ⋅ Ravie Lakshmanan
New Octo Banking Trojan Spreading via Fake Apps on Google Play Store
Coper

2022-04-07 ⋅ US Department of Justice ⋅ Department of Justice
Denys Iarmak, Member of hacking group (FIN7) sentenced for scheme that compromised tens of millions of debit and credit cards

2022-04-07 ⋅ The Hacker News ⋅ Ravie Lakshmanan
First Malware Targeting AWS Lambda Serverless Platform Discovered
Denonia