Malpedia Library

Click here to download all references as Bib-File.•

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via TLD's ( Top Level Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via GTLD's ( Generic Top Level Domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence visa ccTLD ( country code top-level domain )

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence ( Compromised domain list ) via ZoneFiles

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence via Newly Registered Domains

2025-07-31 ⋅ Reverse The Malware ⋅ Diyar Saadi
Threat Intelligence vis Domain Monitoring ( ccTLD , gTLD , TLD , Malware Zones )

2025-07-31 ⋅ Twitter (@Threatlabz) ⋅ Zscaler
Tweet about new variant with BEEF instead of !RHA as config magic bytes
Rhadamanthys

2025-07-30 ⋅ RUSI ⋅ Louise Marie Hurel
What Singapore's First Public Cyber Attribution Tells Us

2025-07-29 ⋅ Foresiet ⋅ Foresiet
AURA Stealer: A Crude Clone of LummaC2 – Technical Analysis and Threat Breakdown
Aura Stealer

2025-07-28 ⋅ Kyiv Independent ⋅ Martin Fornusek
Hacker group claims responsibility for cyberattack on Russia's Aeroflot

2025-07-27 ⋅ Bleeping Computer ⋅ Bill Toulas
Scattered Spider is running a VMware ESXi hacking spree

2025-07-27 ⋅ Medium RaghavtiResearch ⋅ BeGoodToAll
Lumma Stealer — A Proliferating Threat in the Cybercrime Landscape
Lumma Stealer

2025-07-26 ⋅ Reverse The Malware ⋅ Diyar Saadi
User History Artifact : Practical Gathering of Artifacts

2025-07-25 ⋅ Aryaka Networks ⋅ Aditya K. Sood, varadharajan krishnasamy
The Operational Blueprint of Kimsuky APT for Cyber Espionage
Kimsuky

2025-07-25 ⋅ Cloudsek ⋅ Cloudsek
Threat Actors Lure Victims Into Downloading .HTA Files Using ClickFix To Spread Epsilon Red Ransomware
Epsilon Red

2025-07-24 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
BlackSuit ransomware extortion sites seized in Operation Checkmate
BlackSuit Royal Ransom BlackSuit Mount Locker Royal Ransom

2025-07-24 ⋅ Dr.Web ⋅ Dr.Web
Gamers, get ready: scammers disguise cryptocurrency and password-stealing Scavenger trojans as cheats and mods
Scavenger

2025-07-23 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
APT UNG0002 Expands Cyber Espionage Campaigns Across Asia – Active IOCs
UNG0002

2025-07-23 ⋅ Seqrite ⋅ Sathwik Ram Prakki, Subhajeet Singha
Operation CargoTalon : UNG0901 Targets Russian Aerospace & Defense Sector using EAGLET implant.
UNG0901

2025-07-23 ⋅ Cato Networks ⋅ Vitaly Simonovich
Cato CTRL™ Threat Research: Analyzing LAMEHUG – First Known LLM-Powered Malware with Links to APT28 (Fancy Bear)
LAMEHUG