Malpedia Library

2019-03-05 ⋅ Accenture ⋅ Accenture
MUDCARP's Focus on Submarine Technologies
8.t Dropper APT40

2019-03-05 ⋅ ⋅ Tencent ⋅ Tencent
TransparentTribe APT organizes 2019 attacks on Indian government and military targets
Crimson RAT Unidentified 066 Operation C-Major

2019-03-04 ⋅ FireEye ⋅ Ben Read, Fred Plan, Jacqueline O’Leary, Nalani Fraser, Vincent Cannon
APT40: Examining a China-Nexus Espionage Actor
LunchMoney APT40

2019-03-01 ⋅ Fortinet ⋅ FortiGuard SE Team
Breakdown of a Targeted DanaBot Attack
DanaBot

2019-02-28 ⋅ Intezer ⋅ Ignacio Sanmillan
Technical Analysis: Pacha Group Deploying Undetected Cryptojacking Campaigns on Linux Servers
Pacha Group

2019-02-28 ⋅ ⋅ Weixin ⋅ 360威胁情报中心
URLZone: Analysis of Suspected Attacks Against Japanese Hi-Tech Enterprise Employees
UrlZone

2019-02-27 ⋅ Morphisec ⋅ Alon Groisman, Michael Gorelik
New Global Cyber Attack on Point of Sale Sytem
Cobalt Strike

2019-02-26 ⋅ ⋅ Tencent ⋅ Tencent Yujian Threat Intelligence Center
Disclosure of SideWinder APT's attack against South Asia
SideWinder RAZOR TIGER

2019-02-26 ⋅ Yoroi ⋅ ZLAB-Yoroi
The Arsenal Behind the Australian Parliament Hack
LazyCat powerkatz Unidentified 057

2019-02-26 ⋅ dfir it! ⋅ dfir it!
The Supreme Backdoor Factory
FEimea RAT SupremeBot

2019-02-26 ⋅ Malwarebytes ⋅ Jérôme Segura
New Golang brute forcer discovered amid rise in e-commerce attacks
StealthWorker Go WallyShack

2019-02-25 ⋅ One Night in Norfolk ⋅ Kevin Perlow
How To: Analyzing a Malicious Hangul Word Processor Document from a DPRK Threat Actor Group
NavRAT

2019-02-21 ⋅ Palo Alto Networks Unit 42 ⋅ Adran McCabe
Shifting in the Wind: WINDSHIFT Attacks Target Middle Eastern Governments
WindShift

2019-02-21 ⋅ Proofpoint ⋅ Proofpoint Threat Insight Team
Fake Jobs: Campaigns Delivering More_eggs Backdoor via Fake Job Offers
More_eggs FIN6

2019-02-20 ⋅ Kaspersky Labs ⋅ Pavel Shoshin
Cybercrime is focusing on accountants
BuhTrap

2019-02-19 ⋅ Kaspersky Labs ⋅ Konstantin Zykov
ATM robber WinPot: a slot machine instead of cutlets
WinPot

2019-02-18 ⋅ 360 Threat Intelligence ⋅ Anxin Threat Intelligence Center
APT-C-36: Continuous Attacks Targeting Colombian Government Institutions and Corporations
Imminent Monitor RAT APT-C-36

2019-02-18 ⋅ KrebsOnSecurity ⋅ Brian Krebs
A Deep Dive on the Recent Widespread DNS Hijacking Attacks
DNSpionage

2019-02-17 ⋅ ZDNet ⋅ Catalin Cimpanu
Hacker puts up for sale third round of hacked databases on the Dark Web
Gnosticplayers

2019-02-14 ⋅ Twitter (@QW5kcmV3) ⋅ Andrew Thompson
Tweet on unpacking Remexi payload
Remexi