Malpedia Library

Click here to download all references as Bib-File.•

2022-03-27 ⋅ Github (0x00-0x7f) ⋅ Sadia Bashir
A Case of Vidar Infostealer - Part 1 (Unpacking)
Vidar

2022-03-27 ⋅ cocomelonc
Conti ransomware source code investigation - part 1
Conti

2022-03-27 ⋅ Medium M3H51N ⋅ M3H51N
Malware Analysis — NanoCore Rat
Nanocore RAT

2022-03-27 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Hive ransomware ports its Linux VMware ESXi encryptor to Rust
BlackCat Hive Hive

2022-03-26 ⋅ forensicitguy ⋅ Tony Lambert
An AgentTesla Sample Using VBA Macros and Certutil
Agent Tesla

2022-03-26 ⋅ n0p Blog ⋅ Ali Mosajjal
Analysis of a Caddy Wiper Sample Targeting Ukraine
CaddyWiper

2022-03-25 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Jay Yaneza, Sherif Magdy
Purple Fox Uses New Arrival Vector and Improves Malware Arsenal
FatalRat PurpleFox

2022-03-25 ⋅ Trustwave ⋅ Trustwave SpiderLabs
Cyber Attackers Leverage Russia-Ukraine Conflict in Multiple Spam Campaigns
Remcos

2022-03-25 ⋅ GOV.UA ⋅ State Service of Special Communication and Information Protection of Ukraine (CIP)
Who is behind the Cyberattacks on Ukraine's Critical Information Infrastructure: Statistics for March 15-22
Xloader Agent Tesla CaddyWiper Cobalt Strike DoubleZero GraphSteel GrimPlant HeaderTip HermeticWiper IsaacWiper MicroBackdoor Pandora RAT

2022-03-25 ⋅ Github (@swagkarna)
Rafel Rat GitHub repository
Rafel RAT

2022-03-25 ⋅ Dragos ⋅ Conor McLaren, Dragos
How Dragos Activity Groups Obtain Initial Access into Industrial Environments
MimiKatz

2022-03-25 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Raccoon Stealer malware suspends operations due to war in Ukraine
Raccoon

2022-03-25 ⋅ Department of Justice ⋅ Department of Justice
Cybercriminal Connected to Multimillion Dollar Ransomware Attacks Sentenced for Online Fraud Schemes

2022-03-25 ⋅ ⋅ ESET Research ⋅ Alexandre Côté Cyr
Mustang Panda's Hodur: Old stuff, new variant of Korplug
PlugX

2022-03-25 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Jay Yaneza, Sherif Magdy
Purple Fox Uses New Arrival Vector and Improves Malware Arsenal
PurpleFox

2022-03-25 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Jay Yaneza, Sherif Magdy
Purple Fox Uses New Arrival Vector and Improves Malware Arsenal (Technical Brief)
PurpleFox

2022-03-25 ⋅ Trend Micro ⋅ Abdelrhman Sharshar, Jay Yaneza, Sherif Magdy
Purple Fox Uses New Arrival Vector and Improves Malware Arsenal (IOCs)
PurpleFox

2022-03-25 ⋅ Zscaler ⋅ Brett Stone-Gross
Conti Ransomware Attacks Persist With an Updated Version Despite Leaks
Conti

2022-03-25 ⋅ nccgroup ⋅ Yun Zheng Hu
Mining data from Cobalt Strike beacons
Cobalt Strike

2022-03-25 ⋅ SANS ISC ⋅ Xavier Mertens
XLSB Files: Because Binary is Stealthier Than XML
QakBot