Malpedia Library

Click here to download all references as Bib-File.•

2021-07-03 ⋅ VinCSS ⋅ Dang Dinh Phuong, Trương Quốc Ngân
[RE023] Quick analysis and removal tool of a series of new malware variant of Panda group that has recently targeted to Vietnam VGCA

2021-07-02 ⋅ Binary Defense ⋅ Garrett Thompson
New Ransomware “Diavol” Being Dropped by Trickbot
Diavol

2021-07-02 ⋅ Bleeping Computer ⋅ Lawrence Abrams
REvil ransomware hits 1,000+ companies in MSP supply-chain attack
REvil

2021-07-02 ⋅ ⋅ Velzart ⋅ Niels den Hild
Ransomware attack
REvil

2021-07-02 ⋅ Twitter (@VK_intel) ⋅ Vitali Kremez
Tweet on Revil ransomware analysis used in Kaseya attack
REvil

2021-07-02 ⋅ Github (fwosar) ⋅ Fabian Wosar
REvil configuration dump used in Kaseya attack
REvil

2021-07-02 ⋅ Twitter (@SyscallE) ⋅ SeAccessCheck
Tweet on Revil dropper used in Kaseya attack
REvil

2021-07-02 ⋅ ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Dissemination of malicious word documents for 'Korean Political Science and Diplomacy' and 'Biography of Policy Advisor' (kimsuky)

2021-07-02 ⋅ MalwareBookReports ⋅ muzi
Skip the Middleman: Dridex Document to Cobalt Strike
Cobalt Strike Dridex

2021-07-02 ⋅ Group-IB ⋅ Group-IB
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT

2021-07-02 ⋅ The Record ⋅ Catalin Cimpanu
REvil ransomware gang executes supply chain attack via malicious Kaseya update
REvil

2021-07-02 ⋅ The Record ⋅ Catalin Cimpanu
TrickBot: New attacks see the botnet deploy new banking module, new ransomware
TrickBot

2021-07-02 ⋅ Group-IB ⋅ Albert Priego
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT

2021-07-01 ⋅ Avast Decoded ⋅ Igor Morgenstern, Jan Vojtěšek, Luigino Camastra
Backdoored Client from Mongolian CA MonPass
Cobalt Strike Earth Lusca

2021-07-01 ⋅ Avast Decoded ⋅ Igor Morgenstern, Jan Vojtěšek, Luigino Camastra
Backdoored Client from Mongolian CA MonPass
Cobalt Strike FishMaster

2021-07-01 ⋅ Check Point ⋅ Check Point Research
IndigoZebra APT continues to attack Central Asia with evolving tools
BoxCaon xCaon IndigoZebra

2021-07-01 ⋅ Anheng Threat Intelligence Center ⋅ Anheng Threat Intelligence Center
Suspected HADES organization launched an attack on Ukraine with military themes

2021-07-01 ⋅ Quick Heal ⋅ Ayush Puri
WARZONE RAT – Beware Of The Trojan Malware Stealing Data Triggering From Various Office Documents
Ave Maria

2021-07-01 ⋅ Kryptos Logic ⋅ Kryptos Logic Vantage Team
TrickBot and Zeus
TrickBot Zeus

2021-07-01 ⋅ 360 netlab ⋅ Alex.Turing, Chai Linyuan, houliuyang, Hui Wang, Jinye
Mirai_ptea Botnet is Exploiting Undisclosed KGUARD DVR Vulnerability
Mirai