Malpedia Library

Click here to download all references as Bib-File.•

2021-06-22 ⋅ CrowdStrike ⋅ rich seymour
Preventing Exploitation of the ZIP File Format

2021-06-22 ⋅ Maltego ⋅ Intel 471, Maltego Team
Chasing DarkSide Affiliates: Identifying Threat Actors Connected to Darkside Ransomware Using Maltego & Intel 471
DarkSide DarkSide

2021-06-22 ⋅ Aqua ⋅ TEAM Nautilus
Attacks in the Wild on the Container Supply Chain and Infrastructure

2021-06-22 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
LV Ransomware
REvil

2021-06-22 ⋅ Twitter (@Cryptolaemus1) ⋅ Cryptolaemus, dao ming si, Kirk Sayre
Tweet on TA575, a Dridex affiliate delivering cobaltstrike (packed withe Cryptone) directly via the macro docs
Cobalt Strike Dridex

2021-06-21 ⋅ RAND Corporation ⋅ Derek Grossman, Kristen Gunness, Marigold Black, Michael S. Chase, Natalia D. Simmons-Thomas, Nathan Beauchamp-Mustafaga
Deciphering Chinese Deterrence Signalling in the New Era An Analytic Framework and Seven Case Studies

2021-06-21 ⋅ Back Engineering ⋅ _xeroxz
VMProtect 2 - Part Two, Complete Static Analysis

2021-06-21 ⋅ lacework ⋅ Tom Hegel
Threat Hunting SSH Keys – Bash Script Feature Pivoting

2021-06-21 ⋅ SentinelOne ⋅ SentinelOne
DarkRadiation | Abusing Bash For Linux and Docker Container Ransomware
DarkRadiation

2021-06-21 ⋅ AlienVault ⋅ AT&T Alien Labs
Darkside RaaS in Linux version
DarkSide

2021-06-21 ⋅ sonatype ⋅ Ax Sharma
Sonatype Catches New PyPI Cryptomining Malware

2021-06-21 ⋅ Stratosphere Lab ⋅ Kamila Babayeva, Sebastian García
Dissecting a RAT. Analysis of the Saefko RAT.

2021-06-21 ⋅ Medium elis531989 ⋅ Eli Salem
Dissecting and automating Hancitor’s config extraction
Hancitor

2021-06-20 ⋅ Perception Point ⋅ Oded Kalev
Dangerous Phishing Campaign for Harvesting Credentials using an HTML Attachment

2021-06-20 ⋅ The DFIR Report ⋅ The DFIR Report
From Word to Lateral Movement in 1 Hour
Cobalt Strike IcedID

2021-06-20 ⋅ Ashwathi Sasi
The Sorcery of Malware Reverse Engineering

2021-06-19 ⋅ CISA ⋅ US-CERT
Alert (AA21-200A): Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
APT40

2021-06-19 ⋅ NATO ⋅ NATO Strategic CommunicationsCentre of Excellence
Russia's Strategy in Cyberspace

2021-06-18 ⋅ ⋅ GOV.PL ⋅ Jarosław Kaczyński
Statement by the Vice-President of the Council of Ministers, Chairman of the Committee for National Security and Defense Affairs, Jarosław Kaczyński (about UNC1151)

2021-06-18 ⋅ PRODAFT Threat Intelligence ⋅ PRODAFT
LockBit RaaS In-Depth Analysis
LockBit