Malpedia Library

Click here to download all references as Bib-File.•

2022-01-06 ⋅ muha2xmad ⋅ Muhammad Hasan Ali
Unpacking Emotet malware part 01
Emotet

2022-01-06 ⋅ VMRay ⋅ VMRay Labs Team
Malware Analysis Spotlight: XLoader’ Cross-platform Support Utilizing XBinder
Xloader

2022-01-06 ⋅ BleepingComputer
Night Sky is the latest ransomware targeting corporate networks
NightSky

2022-01-06 ⋅ Chuongdong blog ⋅ Chuong Dong
Rook Ransomware Analysis
Rook

2022-01-06 ⋅ Sekoia ⋅ sekoia
NOBELIUM’s EnvyScout infection chain goes in the registry, targeting embassies
Cobalt Strike EnvyScout

2022-01-05 ⋅ AhnLab ⋅ ASEC Analysis Team
Analysis Report on Kimsuky Group’s APT Attacks (AppleSeed, PebbleDash)
Appleseed Kimsuky PEBBLEDASH

2022-01-05 ⋅ Lumen ⋅ Danny Adamitis, Steve Rudd
New Konni Campaign Kicks Off the New Year by Targeting Russian Ministry of Foreign Affairs
Konni

2022-01-05 ⋅ VMRay ⋅ VMRay Labs Team
Malware Analysis Spotlight: Kuzuluy Phishing Kit

2022-01-05 ⋅ McAfee ⋅ Eoin Carroll
Technical Analysis of CVE-2021-1732

2022-01-05 ⋅ Check Point ⋅ Golan Cohen
Can You Trust a File’s Digital Signature? New Zloader Campaign exploits Microsoft’s Signature Verification putting users at risk
Zloader

2022-01-05 ⋅ ARMOR ⋅ Armor
Threat Intelligence Report: The Evolution of Doppel Spider from BitPaymer to Grief Ransomware
DoppelPaymer FriedEx

2022-01-05 ⋅ Telsy ⋅ Claudio Di Giuseppe
SIDECOPY APT: From Windows to *nix
SideCopy

2022-01-05 ⋅ SYGNIA ⋅ Amnon Kushnir, Arie Zilberstein, Boaz Wasserman, Itay Shohat, Noam Lifshitz, Oren Biderman, Yoav Mazor
Elephant Beetle: Uncovering an Organized Financial-Theft Operation
FIN13

2022-01-04 ⋅ SYGNIA ⋅ Sygnia Incident Response Team
TG2003: Elephant Beetle - Uncovering an Organized Financial-theft Operation
FIN13

2022-01-04 ⋅ Microsoft ⋅ Microsoft Detection and Response Team (DART)
Leveraging the Power of KQL in Incident Response

2022-01-04 ⋅ forensicitguy ⋅ Tony Lambert
Extracting Indicators from a Packed Mirai Sample
Mirai

2022-01-04 ⋅ The Cyber Security Times ⋅ John Greenwood
Purple Fox malware is actively distributed via Telegram Installers
PurpleFox

2022-01-03 ⋅ Dee
Tweet on a live C2 panel for Mint stealer
MintStealer

2022-01-03 ⋅ Cluster25 ⋅ Cluster25
North Korean Group “KONNI” Targets The Russian Diplomatic Sector With New Versions Of Malware Implants
Konni

2022-01-03 ⋅ forensicitguy ⋅ Tony Lambert
A Tale of Two Dropper Scripts for Agent Tesla
Agent Tesla