Malpedia Library

Click here to download all references as Bib-File.•

2022-02-17 ⋅ Trellix ⋅ Christiaan Beek, Marc Elias
Looking over the nation-state actors’ shoulders: Even they have a difficult day sometimes
Empire Downloader

2022-02-17 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Threat Thursday: Arkei Infostealer Expands Reach Using SmokeLoader to Target Crypto Wallets and MFA
Arkei Stealer SmokeLoader

2022-02-17 ⋅ NCC Group ⋅ Michael Mullen, Richard Footman, Simon Biggs
Detecting Karakurt – an extortion focused threat actor

2022-02-17 ⋅ SentinelOne ⋅ Amitai Ben, Shushan Ehrlich
Log4j2 In The Wild | Iranian-Aligned Threat Actor “TunnelVision” Actively Exploiting VMware Horizon
APT35

2022-02-17 ⋅ Cofense ⋅ Jake Longden
Phishers Spoof Power BI to Visualize Your Credential Data

2022-02-17 ⋅ BR.DE ⋅ Florian Flade, Hakan Tanriverdi, Lea Frey
The Elite Hackers of the FSB (Linking Turla to FSB)

2022-02-17 ⋅ Medium s2wlab ⋅ S2W TALON
Tracking SugarLocker ransomware & operator
Sugar

2022-02-17 ⋅ ⋅ Github (shhoya) ⋅ Shh0ya Security Lab
VMProtect Analysis 1.0: VMP Mutation Fix

2022-02-17 ⋅ Twitter (@Honeymoon_IoC) ⋅ Gi7w0rm
Tweets on win.prometei caught via Cowrie
Prometei

2022-02-16 ⋅ Telsy ⋅ Telsy Research Team
BabaDeda and LorecCPL downloaders used to run Outsteel against Ukraine
OutSteel

2022-02-16 ⋅ ZeroFox ⋅ Stephan Simon
Meet Kraken: A New Golang Botnet in Development
Anubis Loader

2022-02-16 ⋅ Trend Micro ⋅ Fyodor Yarochkin, Paul Pajares, Ryan Flores, Vladimir Kropotov, Zhengyu Dong
SMS PVA Services' Use of Infected Android Phones Reveals Flaws in SMS Verification
Guerrilla

2022-02-16 ⋅ Välisluureamet Estonian Foreign Intelligence Service ⋅ Välisluureamet Estonian Foreign Intelligence Service
International Security and Estonia 2022

2022-02-16 ⋅ Medium s2wlab ⋅ S2W TALON
Post Mortem of KlaySwap Incident through BGP Hijacking | EN

2022-02-16 ⋅ CrowdStrike ⋅ CrowdStrike
Global Threat Report 2022
Sea Turtle

2022-02-16 ⋅ The Record ⋅ Catalin Cimpanu
Red Cross blames hack on Zoho vulnerability, suspects APT attack

2022-02-16 ⋅ CISA ⋅ FBI, NSA, US-CERT
Alert (AA22-047A) Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Information and Technology

2022-02-16 ⋅ Advanced Intelligence ⋅ Yelisey Boguslavskiy
The TrickBot Saga’s Finale Has Aired: Spinoff is Already in the Works
TrickBot

2022-02-16 ⋅ NetScout ⋅ Roland Dobbins, Steinthor Bjarnason
DDoS Attack Campaign Targeting Multiple Organizations in Ukraine
Mirai

2022-02-16 ⋅ Check Point Research ⋅ Aliaksandr Trafimchuk, Raman Ladutska
A Modern Ninja: Evasive Trickbot Attacks Customers of 60 High-Profile Companies
TrickBot