Malpedia Library

Click here to download all references as Bib-File.•

2021-08-19 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
BlackBerry Prevents: Threat Actor Group TA575 and Dridex Malware
Cobalt Strike Dridex TA575

2021-08-18 ⋅ Recorded Future ⋅ Insikt Group®
China Propaganda Network Targets BBC Media, UK in Large-Scale Influence Campaign

2021-08-18 ⋅ Intezer ⋅ Ryan Robinson
Cobalt Strike: Detect this Persistent Threat
Cobalt Strike

2021-08-18 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Diavol ransomware sample shows stronger connection to TrickBot gang
Diavol

2021-08-17 ⋅ Medium amgedwageh ⋅ Amged Wageh
LockBit Ransomware Analysis Notes
LockBit

2021-08-17 ⋅ ClearSky ⋅ ClearSky Research Team
New Iranian Espionage Campaign By “Siamesekitten” – Lyceum
LYCEUM

2021-08-17 ⋅ Recorded Future ⋅ Insikt Group®
Operation Secondary Infektion Continues Targeting Democratic Institutions and Regional Geopolitics

2021-08-17 ⋅ Medium michaelkoczwara ⋅ Michael Koczwara
Cobalt Strike Hunting — DLL Hijacking/Attack Analysis
Cobalt Strike

2021-08-17 ⋅ Sekoia ⋅ sekoia
An insider insights into Conti operations – Part one
Cobalt Strike Conti

2021-08-17 ⋅ Advanced Intelligence ⋅ Vitali Kremez, Yelisey Boguslavskiy
Hunting for Corporate Insurance Policies: Indicators of [Ransom] Exfiltration
Cobalt Strike Conti

2021-08-17 ⋅ ClearSky ⋅ ClearSky
New Iranian Espionage Campaign By “Siamesekitten” - Lyceum
danbot Milan Shark

2021-08-17 ⋅ Trend Micro ⋅ Daniel Lunghi
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military
Chrysaor Confucius

2021-08-17 ⋅ Huntress Labs ⋅ Matthew Brennan
Snakes on a Domain: An Analysis of a Python Malware Loader

2021-08-17 ⋅ Volatility Labs ⋅ Damien Cash, Josh Grunzweig, Matthew Meltzer, Steven Adair, Thomas Lancaster
North Korean APT37 / InkySquid Infects Victims Using Browser Exploits
BLUELIGHT APT37

2021-08-17 ⋅ Netcraft ⋅ Sean Gebbett
Resurgent FluBot malware targets German and Polish banks
FluBot

2021-08-17 ⋅ IBM X-Force Exchange ⋅ Charlotte Hammond, Chris Caridi
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Diavol

2021-08-17 ⋅ Amged Wagih
LockBit Ransomware - Technical Anlysis
LockBit

2021-08-16 ⋅ Malcat ⋅ malcat team
Statically unpacking a simple .NET dropper
Loki Password Stealer (PWS)

2021-08-16 ⋅ cyble ⋅ Cyble
A Deep-dive Analysis of LOCKBIT 2.0
LockBit

2021-08-16 ⋅ Trend Micro ⋅ Byron Gelera, Cris Tomboc, Jayson Chong, Jett Paulo Bernardo, Mark Marti, Nikki Madayag, Sean Torre
LockBit Resurfaces With Version 2.0 Ransomware Detections in Chile, Italy, Taiwan, UK
LockBit