Malpedia Library

Click here to download all references as Bib-File.•

2017-11-12 ⋅ Vitali Kremez Blog ⋅ Vitali Kremez
Let's Learn: Dissecting Golroted Trojan's Process Hollowing Technique & UAC Bypass in HKCU\Environment
Golroted

2017-11-09 ⋅ Wired ⋅ Andy Greenberg
He Perfected a Password-Hacking Tool—Then the Russians Came Calling
MimiKatz

2017-11-08 ⋅ Reaqta ⋅ Reaqta
A short journey into DarkVNC attack chain
DarkVNC

2017-11-08 ⋅ ⋅ Freebuf ⋅ Security Leopard
Analysis of an active USB flash drive virus
MyloBot

2017-11-07 ⋅ Trend Micro ⋅ Joey Chen, MingYen Hsieh
REDBALDKNIGHT/BRONZE BUTLER’s Daserf Backdoor Now Using Steganography
Tick

2017-11-07 ⋅ Trend Micro ⋅ Trendmicro
REDBALDKNIGHT/BRONZE BUTLER’s Daserf Backdoor Now Using Steganography
Daserf Datper xxmm

2017-11-02 ⋅ PWC UK ⋅ Bart Parys
The KeyBoys are back in town
KeyBoy

2017-11-02 ⋅ RiskIQ ⋅ Yonathan Klijnsma
New Insights into Energetic Bear’s Watering Hole Cyber Attacks on Turkish Critical Infrastructure
ENERGETIC BEAR

2017-11-02 ⋅ Palo Alto Networks Unit 42 ⋅ Jacob Soo, Josh Grunzweig
Recent InPage Exploits Lead to Multiple Malware Families
Confucius

2017-11-02 ⋅ Talos ⋅ Earl Carter, Edmund Brumaghin, Emmanuel Tacheau
Poisoning the Well: Banking Trojan Targets Google Search Results
PandaBanker

2017-11-02 ⋅ Palo Alto Networks Unit 42 ⋅ Jacob Soo, Josh Grunzweig
Recent InPage Exploits Lead to Multiple Malware Families
BioData

2017-11-01 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
CryptoShuffler Stole $150,000 by Replacing Bitcoin Wallet IDs in PC Clipboards
CryptoShuffler

2017-11-01 ⋅ Kaspersky Labs ⋅ GReAT
Silence – a new Trojan attacking financial organizations
Silence Silence group

2017-10-31 ⋅ McAfee ⋅ Xiaobing Lin
Expiro Malware Is Back and Even Harder to Remove
Expiro

2017-10-31 ⋅ Bleeping Computer ⋅ Lawrence Abrams
ONI Ransomware Used in Month-Long Attacks Against Japanese Companies
Oni

2017-10-30 ⋅ Kaspersky Labs ⋅ Ghareeb Saad, Mohamad Amin Hasbini
Gaza Cybergang – updated activity in 2017:
Molerats

2017-10-30 ⋅ ESET Research ⋅ Frédéric Vachon
Windigo Still not Windigone: An Ebury Update
Ebury

2017-10-29 ⋅ quangnh89
Sality Configuration Extractor (sality_extractor.py)
Sality

2017-10-27 ⋅ Palo Alto Networks Unit 42 ⋅ Unit42
Tracking Subaat: Targeted Phishing Attack Leads to Threat Actor’s Repository
The Gorgon Group

2017-10-27 ⋅ Independent.co.uk ⋅ Adam Withnall
British security minister says North Korea was behind WannaCry hack on NHS
WannaCryptor