Malpedia Library

Click here to download all references as Bib-File.•

2025-03-12 ⋅ Lookout ⋅ Lookout
Lookout Discovers New Spyware by North Korean APT37
KoSpy

2025-03-11 ⋅ Cato Networks ⋅ Matan Mittleman, Ofek Vardi
Cato CTRL Threat Research: Ballista – New IoT Botnet Targeting Thousands of TP-Link Archer Routers
Ballista

2025-03-11 ⋅ Hunt.io ⋅ Hunt.io
JSPSpy and ‘filebroser’: A Custom File Management Tool in Webshell Infrastructure

2025-03-11 ⋅ Juniper Networks ⋅ Cybersecurity R&D
The RedPenguin Malware Incident
tsh

2025-03-11 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks
AsyncRAT NjRAT Quasar RAT Remcos

2025-03-11 ⋅ Trend Micro ⋅ Cj Arsley Mateo, Darrel Tristan Virtusio, Jacob Santos, Junestherry Dela Cruz, Paul John Bardon
AI-Assisted Fake GitHub Repositories Fuel SmartLoader and LummaStealer Distribution
Lumma Stealer SmartLoader

2025-03-11 ⋅ Kaspersky Labs ⋅ AMR
DCRat backdoor returns
DCRat

2025-03-11 ⋅ Idan Malihi ⋅ Idan Malihi, Yaniv Azran
DragonForce Ransomware: Unveiling Its Tactics and Impact
DragonForce

2025-03-11 ⋅ ThreatMon ⋅ Aziz Kaplan, ThreatMon, ThreatMon Malware Research Team
New Ermac Variant - Android Banking Trojan & Botnet
ERMAC

2025-03-10 ⋅ LevelBlue ⋅ Ken Ng
Prevent, Detect, Contain: LevelBlue MDR’s Guide Against Black Basta Affiliates’ Attacks
Black Basta Black Basta ReedBed

2025-03-10 ⋅ Check Point Research ⋅ Check Point Research
Blind Eagle: …And Justice for All
Remcos

2025-03-10 ⋅ Socket ⋅ Kirill Boychenko
Lazarus Strikes npm Again with New Wave of Malicious Packages

2025-03-10 ⋅ Cofense ⋅ Max Gannon
Trump Cryptocurrency Delivers ConnectWise RAT

2025-03-07 ⋅ ⋅ Youtube (greenplan) ⋅ greenplan
[BINARY REFINERY] (MintsLoader) - Writing a Unit to deobfuscated JavaScript payload
MintsLoader

2025-03-07 ⋅ Proofpoint ⋅ Ole Villadsen, Proofpoint Threat Research Team, Selena Larson
Remote Monitoring and Management (RMM) Tooling Increasingly an Attacker’s First Choice

2025-03-07 ⋅ MalwareAnalysisSpace ⋅ Seeker
Akira Ransomware Expands to Linux: the attacking abilities and strategies
Akira

2025-03-06 ⋅ flare ⋅ Estelle Ruellan, Oleg Lypko, Tammy Harper
Deciphering Black Basta’s Infrastructure from the Chat Leak
Black Basta Black Basta

2025-03-06 ⋅ Outpost24 ⋅ KrakenLabs
Unveiling EncryptHub: Analysis of a multi-stage malware campaign
Rhadamanthys

2025-03-06 ⋅ Palo Alto Networks Unit 42 ⋅ Janos Szurdi, Reethika Ramesh
The Next Level: Typo DGAs Used in Malicious Redirection Chains

2025-03-06 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet about Moonstone Sleet dropping Qilin ransomware
Qilin