Malpedia Library

2023-02-24 ⋅ ESET Research ⋅ ESET Research
A year of wiper attacks in Ukraine

2023-02-23 ⋅ ESET Research ⋅ Vladislav Hrčka
WinorDLL64: A backdoor from the vast Lazarus arsenal?
WinorDLL64

2023-02-01 ⋅ ESET Research ⋅ ESET Research
Threat Report T3 2022

2023-01-30 ⋅ ESET Research ⋅ ESET Research
APT Activity Report T3 2022: Sandworm Deploying its Enhanced Wiper Arsenal

2023-01-27 ⋅ ESET Research ⋅ ESET Research
Tweets on SwiftSlicer
SwiftSlicer

2023-01-27 ⋅ ESET Research ⋅ ESET Research
SwiftSlicer: New destructive wiper malware strikes Ukraine
SwiftSlicer

2023-01-10 ⋅ ESET Research ⋅ Lukáš Štefanko
StrongPity espionage campaign targeting Android users

2022-12-14 ⋅ ESET Research ⋅ Dominik Breitenbacher
Unmasking MirrorFace: Operation LiberalFace targeting Japanese political entities
LODEINFO MirrorFace

2022-12-07 ⋅ ESET Research ⋅ Adam Burgher
Fantasy – a new Agrius wiper deployed through a supply‑chain attack
Apostle DEADWOOD

2022-11-30 ⋅ ESET Research ⋅ Filip Jurčacko
Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin

2022-11-25 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Twitter thread about RansomBoggs campaign against Ukraine

2022-11-23 ⋅ ESET Research ⋅ Lukáš Štefanko
Bahamut cybermercenary group targets Android users with fake VPN apps
Bahamut

2022-11-22 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweets on SysUpdate / Soldier / HyperSSL
HyperSSL

2022-10-06 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweet on Bumblebee being modularized like trickbot
BumbleBee

2022-09-30 ⋅ ESET Research ⋅ Peter Kálnai
Amazon‑themed campaigns of Lazarus in the Netherlands and Belgium
BLINDINGCAN FudModule HTTP(S) uploader LambLoad TOUCHMOVE

2022-09-28 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Twitter Thread linking CloudMensis to RokRAT / ScarCruft
CloudMensis RokRAT

2022-09-14 ⋅ ESET Research ⋅ Mathieu Tartare, Thibaut Passilly, Vladislav Hrčka
You never walk alone: The SideWalk backdoor gets a Linux variant
SideWalk