Malpedia Library

Click here to download all references as Bib-File.•

2022-02-26 ⋅ Mandiant ⋅ Mandiant
TRENDING EVIL Q1 2022
KEYPLUG FAKEUPDATES GootLoader BazarBackdoor QakBot

2022-02-26 ⋅ Yoroi ⋅ Carmelo Ragusa, Luca Mella, Luigi Martire
DiskKill/HermeticWiper, a disruptive cyber-weapon targeting Ukraine’s critical infrastructures
HermeticWiper

2022-02-26 ⋅ Seguranca Informatica ⋅ Pedro Tavares
The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years
lampion

2022-02-26 ⋅ META ⋅ META
Meta’s Ongoing Efforts Regarding Russia’s Invasion of Ukraine

2022-02-26 ⋅ LinkedIn (Zayed AlJaberi) ⋅ Zayed AlJaberi
Hunting Recent QakBot Malware
QakBot

2022-02-26 ⋅ Aon ⋅ Eduardo Mattos, Rob Homewood
Yours Truly, Signed AV Driver: Weaponizing An Antivirus Driver
KillAV

2022-02-26 ⋅ Atomic Matryoshka ⋅ z3r0day_504
Infographic: APTs in South America
Imminent Monitor RAT Machete

2022-02-26 ⋅ CISA ⋅ CISA, FBI
Destructive Malware Targeting Organizations in Ukraine
HermeticWiper WhisperGate

2022-02-26 ⋅ CISA
Alert (AA22-057A) Destructive Malware Targeting Organizations in Ukraine
HermeticWiper WhisperGate

2022-02-25 ⋅ The Record ⋅ Emma Vail
Russia or Ukraine: Hacking groups take sides
Killnet

2022-02-25 ⋅ vmware ⋅ Sudhir Devkar, Threat Analysis Unit
AvosLocker – Modern Linux Ransomware Threats
Avoslocker

2022-02-25 ⋅ The Hacker News ⋅ Ravie Lakshmanan
New "SockDetour" Fileless, Socketless Backdoor Targets U.S. Defense Contractors

2022-02-25 ⋅ infoRisk TODAY ⋅ Prajeet Nair
MuddyWater Targets Critical Infrastructure in Asia, Europe
POWERSTATS PowGoop STARWHALE GRAMDOOR MoriAgent

2022-02-25 ⋅ Threatray ⋅ Carlos Rubio, Markel Picado
Threat updates – A new IcedID GZipLoader variant
IcedID Downloader

2022-02-25 ⋅ 360 netlab ⋅ Ghost
Some details of the DDoS attacks targeting Ukraine and Russia in recent days
Bashlite Mirai MooBot PerlBot

2022-02-25 ⋅ Fortinet ⋅ Rotem Sde-Or
The Hunt for the Lost Soul: Unraveling the Evolution of the SoulSearcher Malware
Soul

2022-02-25 ⋅ IBM ⋅ Charlotte Hammond, Ole Villadsen
Trickbot Group’s AnchorDNS Backdoor Upgrades to AnchorMail
AnchorDNS AnchorMail

2022-02-25 ⋅ RiskIQ ⋅ RiskIQ
RiskIQ: UNC1151/GhostWriter Phishing Attacks Target Ukrainian Soldiers

2022-02-25 ⋅ AhnLab ⋅ ASEC Analysis Team
New Infostealer ‘ColdStealer’ Being Distributed
ColdStealer

2022-02-25 ⋅ CrowdStrike ⋅ Adrian Liviu Arsene, Farid Hendi, william thomas
CrowdStrike Falcon Protects from New Wiper Malware Used in Ukraine Cyberattacks
HermeticWiper