Malpedia Library

Click here to download all references as Bib-File.•

2021-05-27 ⋅ 360 netlab ⋅ Alex.Turing, Chai Linyuan, Jinye
Analysis report of the Facefish rootkit
Facefish

2021-05-21 ⋅ 360 Total Security ⋅ kate
DarkSide’s Targeted Ransomware Analysis Report for Critical U.S. Infrastructure
DarkSide

2021-05-06 ⋅ 360 netlab ⋅ Alex Turing
RotaJakiro, the Linux version of the OceanLotus
RotaJakiro

2021-04-29 ⋅ 360 netlab ⋅ Jinye, Liu Ya, YANG XU
Threat Alert: New update from Sysrv-hello, now infecting victims‘ webpages to push malicious exe to end users

2021-04-28 ⋅ 360 netlab ⋅ Alex Turing, Hui Wang
RotaJakiro: A long live secret backdoor with 0 VT detection
RotaJakiro

2021-04-20 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Transparent Tribe uses the new crown vaccine hotspot to analyze the targeted attacks on the Indian medical industry
Crimson RAT

2021-04-02 ⋅ 360 Total Security ⋅ kate
A “txt file” can steal all your secrets
Poulight Stealer

2021-03-23 ⋅ ⋅ 360 Core Security ⋅ 360 Core Security
RemRAT: Android spyware that has been lurking in the Middle East for many years
RemRAT

2021-03-18 ⋅ 360 netlab ⋅ Jinye, YANG XU
Necro upgrades again, using Tor + dynamic domain DGA and aiming at both Windows & Linux
N3Cr0m0rPh Keksec

2021-03-12 ⋅ 360 netlab ⋅ Alex.Turing, liuyang, YANG XU
New Threat: ZHtrap botnet implements honeypot to facilitate finding more victims
ZHtrap

2021-03-09 ⋅ 360 netlab ⋅ JiaYu
Threat Alert: z0Miner Is Spreading quickly by Exploiting ElasticSearch and Jenkins Vulnerabilities

2021-03-05 ⋅ 360 netlab ⋅ GenShen Ye, JiaYu, Yanlong Ma
QNAP NAS users, make sure you check your system
QNAPCrypt

2021-03-04 ⋅ 360 netlab ⋅ Jinye
Gafgtyt_tor and Necro are on the move again
Bashlite N3Cr0m0rPh Keksec

2021-03-03 ⋅ 360 netlab ⋅ Alex Turing, GenShen Ye
Fbot is now riding the traffic and transportation smart devices
FBot

2021-02-25 ⋅ 360 Total Security ⋅ kate
DarkWorld Ransomware

2021-02-10 ⋅ 360 netlab ⋅ Liu Ya
Rinfo Is Making A Comeback and Is Scanning and Mining in Full Speed

2021-01-26 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Shell Break-Lazarus (APT-C-26) organized targeted attacks against security researchers to reveal the secret

2021-01-22 ⋅ 360 netlab ⋅ Jinye
Necro is going to version 3 and using PyInstaller and DGA
N3Cr0m0rPh

2021-01-21 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Disclosure of Manling Flower Organization (APT-C-08) using Warzone RAT attack
Ave Maria

2020-12-18 ⋅ ⋅ 360Quake ⋅ 360Quake
SolarWinds失陷服务器测绘分析报告
SUPERNOVA