Malpedia Library

Click here to download all references as Bib-File.•

2021-12-29 ⋅ CrowdStrike ⋅ Benjamin Wiley, Falcon OverWatch Team
OverWatch Exposes AQUATIC PANDA in Possession of Log4Shell Exploit Tools During Hands-on Intrusion Attempt
Earth Lusca

2021-12-29 ⋅ Palo Alto Networks Unit 42 ⋅ Daiping Liu, Jielong Xu, Wanjin Li, Zhanhao Chen
Strategically Aged Domain Detection: Capture APT Attacks With DNS Traffic Trends
Chrysaor SUNBURST

2021-12-29 ⋅ CrowdStrike ⋅ Benjamin Wiley, Falcon OverWatch Team
OverWatch Exposes AQUATIC PANDA in Possession of Log4Shell Exploit Tools During Hands-on Intrusion Attempt
Cobalt Strike

2021-12-29 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
AsyncRAT Configuration Parser
AsyncRAT

2021-12-29 ⋅ Aqua ⋅ Nitzan Yaakov
Threat Alert: Evolving Attack Techniques of Autom Cryptomining Campaign

2021-12-29 ⋅ Blake's R&D ⋅ Blake
Cobalt Strike DFIR: Listening to the Pipes
Cobalt Strike

2021-12-29 ⋅ Nikkei Asia ⋅ Ryoma Kashiwagi
Japan aerospace cyberattacks show link to Chinese military: police (PLA Unit 61419)

2021-12-28 ⋅ AhnLab ⋅ ASEC Analysis Team
APT Attack Cases of Kimsuky Group (PebbleDash)
PEBBLEDASH

2021-12-28 ⋅ Twitter (MalwareHunterTeam) ⋅ MalwareHunterTeam
Tweet on RagnarLocker Linux variant
RagnarLocker

2021-12-28 ⋅ Medium Crovax ⋅ Crovax
Extracting Hancitor’s Configuration with Ghidra part 1
Hancitor

2021-12-28 ⋅ CyStack ⋅ Chau Ha, Chau Nguyen, Duong Tran, Khoi Vu, Son Nguyen, Trung Nguyen
The attack on ONUS – A real-life case of the Log4Shell vulnerability

2021-12-28 ⋅ ⋅ AhnLab ⋅ ASEC Analysis Team
Cases of Lockis ransomware infection
GlobeImposter

2021-12-28 ⋅ CrowdStrike ⋅ Blair Foster, satoshi tanda, Timo Kreuzer, Yarden Shafir
CrowdStrike Strengthens Exploit Protection Using Intel CPU Telemetry

2021-12-28 ⋅ Padvish Threats Database ⋅ Padvish Threats Database
Implant.ARM.iLOBleed.a

2021-12-28 ⋅ Morphus Labs ⋅ Renato Marinho
Attackers are abusing MSBuild to evade defenses and implant Cobalt Strike beacons
Cobalt Strike

2021-12-28 ⋅ MIT Technology Review ⋅ Patrick Howell O'Neill
The hacker-for-hire industry is now too big to fail

2021-12-28 ⋅ The Record ⋅ Catalin Cimpanu
Iranian hackers behind Cox Media Group ransomware attack (DEV-0270)
SamSam

2021-12-28 ⋅ NTT ⋅ Hiroki Hada
Flagpro: The new malware used by BlackTech
Flagpro

2021-12-27 ⋅ Checkpoint Research
A Deep Dive into DoubleFeature, Equation Group’s Post-Exploitation Dashboard
Equationgroup (Sorting) Fanny MISTYVEAL PeddleCheap

2021-12-25 ⋅ 3xp0rt ⋅ 3xp0rt
A new version of X-Files Stealer
X-Files Stealer