Malpedia Library

2022-05-03 ⋅ Google ⋅ Billy Leonard, Google Threat Analysis Group
Update on cyber activity in Eastern Europe
Curious Gorge

2022-05-02 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
AsyncRAT Activity
AsyncRAT

2022-04-28 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BoratRAT
Borat RAT

2022-04-27 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
BRONZE PRESIDENT Targets Russian Speakers with Updated PlugX
DOPLUGS

2022-04-27 ⋅ Symantec ⋅ Threat Hunter Team
Stonefly: North Korea-linked Spying Operation Continues to Hit High-value Targets
Dtrack VSingle

2022-04-27 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
eSentire Threat Intelligence Malware Analysis: SolarMarker
solarmarker

2022-04-26 ⋅ AhnLab ⋅ ASEC Analysis Team
New Malware of Lazarus Threat Actor Group Exploiting INITECH Process
Racket Downloader wAgentTea

2022-04-25 ⋅ Bitdefender ⋅ Martin Zugec
Deep Dive into the Elephant Framework – A New Cyber Threat in Ukraine
GraphSteel GrimPlant

2022-04-25 ⋅ Cybereason ⋅ Aleksandar Milenkoski, Loïc Castel, Yonatan Gidnian
THREAT ANALYSIS REPORT: SocGholish and Zloader – From Fake Updates and Installers to Owning Your Systems
FAKEUPDATES Zloader

2022-04-22 ⋅ SUCURI ⋅ Sucuri
2021 Website Threat Research Report

2022-04-21 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
Hackers Spearphish Corporate Hiring Managers with Poisoned Resumes, Infecting Them with the More_Eggs Malware, Warns eSentire
More_eggs TerraLoader VenomLNK

2022-04-21 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BlackGuard Infostealer Rises from Russian Underground Markets
BlackGuard

2022-04-21 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
GOLD ULRICK Continues Conti Operations Despite Public Disclosures
Conti Conti

2022-04-20 ⋅ Symantec ⋅ Threat Hunter Team
Shuckworm: Espionage Group Continues Intense Campaign Against Ukraine
Pteranodon

2022-04-19 ⋅ 360 ⋅ 360 Netlab
Public Cloud Cybersecurity Threat Intelligence (202203)
Bashlite Tsunami Mirai

2022-04-15 ⋅ Arctic Wolf ⋅ Arctic Wolf
The Karakurt Web: Threat Intel and Blockchain Analysis Reveals Extension of Conti Business Model
Conti Diavol Ryuk TrickBot

2022-04-15 ⋅ splunk ⋅ Splunk Threat Research Team
STRT-TA03 CPE - Destructive Software
AcidRain CyclopsBlink

2022-04-14 ⋅ Symantec ⋅ Threat Hunter Team
Lazarus Targets Chemical Sector
Racket Downloader

2022-04-14 ⋅ Cynet ⋅ Max Malyutin
Orion Threat Alert: Flight of the BumbleBee
BumbleBee Cobalt Strike

2022-04-14 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: HeaderTip Backdoor Shows Attackers from China Preying on Ukraine
HeaderTip