Malpedia Library

Click here to download all references as Bib-File.•

2024-02-19 ⋅ Fortinet ⋅ Axelle Apvrille
Android/SpyNote bypasses Restricted Settings + breaks many RE tools
SpyNote

2024-02-19 ⋅ Bundesamt für Verfassungsschutz ⋅ Bundesamt für Verfassungsschutz
Warning of North Korean cyber threats targeting the Defense Sector
PEBBLEDASH

2024-02-19 ⋅ Cyber Geeks ⋅ CyberMasterV
A Technical Analysis of the BackMyData Ransomware Used to Attack Hospitals in Romania
Phobos

2024-02-17 ⋅ Recorded Future ⋅ Insikt Group
Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign
Unidentified JS 006 (Winter Wyvern)

2024-02-16 ⋅ Malcat ⋅ malcat team
Writing a Qakbot 5.0 config extractor with Malcat
QakBot

2024-02-15 ⋅ DNSC ⋅ Directoratul National de Securitate Cibernetica
Backmydata Ransomware
Phobos

2024-02-15 ⋅ Cisco Talos ⋅ Arnaud Zobec, Asheer Malhotra, Holger Unterbrink, Vitor Ventura
TinyTurla Next Generation - Turla APT spies on Polish NGOs
TinyTurlaNG

2024-02-14 ⋅ K7 Security ⋅ Sudeep Waingankar
Zloader Strikes Back
Zloader

2024-02-13 ⋅ Volexity ⋅ Ankur Saini, Callum Roxan, Charlie Gardner, Damien Cash
CharmingCypress: Innovating Persistence
BASICSTAR Charming Kitten

2024-02-13 ⋅ Palo Alto Networks Unit 42 ⋅ Ofir Ozer, Or Chechik
A Deep Dive Into Malicious Direct Syscall Detection
Lumma Stealer

2024-02-13 ⋅ Proofpoint ⋅ Axel F, Selena Larson
Bumblebee Buzzes Back in Black
BumbleBee

2024-02-13 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Peter Girnus, Simon Zuckerbraun
Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day
DarkMe

2024-02-12 ⋅ Estrellas's Blog ⋅ Otávio M.
Unveiling custom packers: A comprehensive guide
Dridex Simda

2024-02-12 ⋅ Palo Alto Networks Unit 42 ⋅ Dan Yashnik, Lior Rochberger
Diving Into Glupteba's UEFI Bootkit
Glupteba

2024-02-12 ⋅ VenzoV
WikiLoader "notepad" part 2 - bingmaps.dll & explorer.exe injection
WikiLoader

2024-02-12 ⋅ HelpNetSecurity ⋅ Zeljka Zorz
Decryptor for Rhysida ransomware is available!
Rhysida

2024-02-12 ⋅ Zscaler ⋅ Nikolaos Pantazopoulos
The (D)Evolution of Pikabot
Pikabot

2024-02-11 ⋅ Estrellas's Blog ⋅ Otávio M.
Unpacking an Emotet trojan
Emotet

2024-02-09 ⋅ Hunt.io ⋅ Michael R
Tracking ShadowPad Infrastructure Via Non-Standard Certificates
ShadowPad

2024-02-09 ⋅ Department of Justice ⋅ Office of Public Affairs
International Cybercrime Malware Service Dismantled by Federal Authorities: Key Malware Sales and Support Actors in Malta and Nigeria Charged in Federal Indictments
Ave Maria