Malpedia Library

Click here to download all references as Bib-File.•

2022-05-16 ⋅ FBI ⋅ FBI
FBI Flash MC-000170-MW: Cyber Actors Scrape Credit Card Data from US Business’ Online Checkout Page and Maintain Persistence by Injecting Malicious PHP Code

2022-05-16 ⋅ Webz.io ⋅ Hagar Margolin
New Ransomware Group: RansomHouse – Is it Real or Fake?
RansomHouse

2022-05-16 ⋅ Kaspersky ⋅ Roman Dedenok
HTML attachments in phishing e-mails

2022-05-16 ⋅ Trend Micro ⋅ Cifer Fang, Ford Qin, Zhengyu Dong
Fake Mobile Apps Steal Facebook Credentials, Cryptocurrency-Related Keys
FaceStealer

2022-05-16 ⋅ vmware ⋅ Jason Zhang, Oleg Boyarchuk, Stefano Ortolani, Threat Analysis Unit
Emotet Moves to 64 bit and Updates its Loader
Emotet

2022-05-16 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
Analysis of HUI Loader
HUI Loader PlugX Poison Ivy Quasar RAT

2022-05-16 ⋅ Jamf Blog ⋅ Jaron Bradley, Matt Benyo, Stuart Ashenbrenner
UpdateAgent Adapts Again
UpdateAgent

2022-05-16 ⋅ Malwarebytes Labs ⋅ Threat Intelligence Team
Custom PowerShell RAT targets Germans seeking information about the Ukraine crisis
Unidentified PS 003 (RAT)

2022-05-16 ⋅ Bleeping Computer ⋅ Bill Toulas
Ukraine supporters in Germany targeted with PowerShell RAT malware

2022-05-15 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Fake Pixelmon NFT site infects you with password-stealing malware
Vidar

2022-05-13 ⋅ forensicitguy ⋅ Tony Lambert
Analyzing a Pirrit adware installer
Pirrit

2022-05-13 ⋅ K7 Security ⋅ Baran S
Teabot
Anatsa

2022-05-13 ⋅ Cluster25 ⋅ Cluster25
Cozy Smuggled Into The Box: APT29 Abusing Legitimate Software For Targeted Operations In Europe

2022-05-12 ⋅ ⋅ Github (shmilylty) ⋅ Jing Ling
Github Repository for NetSpy
NetSpy

2022-05-12 ⋅ Medium (Cryptax) ⋅ Axelle Apvrille
Reversing an Android sample which uses Flutter

2022-05-12 ⋅ TEAMT5 ⋅ Leon Chang, Silvia Yeh
The Next Gen PlugX/ShadowPad? A Dive into the Emerging China-Nexus Modular Trojan, Pangolin8RAT (slides)
KEYPLUG Cobalt Strike CROSSWALK FunnySwitch PlugX ShadowPad Winnti SLIME29 TianWu

2022-05-12 ⋅ FortiGuard Labs ⋅ Xiaopeng Zhang
Phishing Campaign Delivering Three Fileless Malware: AveMariaRAT / BitRAT / PandoraHVNC – Part I
Ave Maria BitRAT Pandora RAT

2022-05-12 ⋅ Morphisec ⋅ Hido Cohen
New SYK Crypter Distributed Via Discord
AsyncRAT Ave Maria Nanocore RAT NjRAT Quasar RAT RedLine Stealer

2022-05-12 ⋅ Bleeping Computer ⋅ Bill Toulas
Eternity malware kit offers stealer, miner, worm, ransomware tools
Eternity Clipper Eternity Ransomware Eternity Worm

2022-05-12 ⋅ cyble ⋅ Cyble Research Labs
A Closer Look At Eternity Malware: Threat Actors Leveraging Telegram To Build Malware
DynamicStealer Eternity Clipper Eternity Ransomware Eternity Stealer Eternity Worm