Malpedia Library

Click here to download all references as Bib-File.•

2023-01-18 ⋅ SANS ISC ⋅ Brad Duncan
Malicious Google Ad --> Fake Notepad++ Page --> Aurora Stealer malware
Aurora Stealer

2023-01-12 ⋅ Cybleinc ⋅ Cyble
Rhadamanthys: New Stealer Spreading Through Google Ads
Rhadamanthys

2023-01-03 ⋅ Malware Traffic Analysis ⋅ Brad Duncan
2023-01-03 (TUESDAY) - GOOGLE AD --> FAKE NOTPAD++ PAGE --> RHADAMANTHYS STEALER
Rhadamanthys

2022-12-23 ⋅ Trendmicro ⋅ Ian Kenefick
IcedID Botnet Distributors Abuse Google PPC to Distribute Malware
IcedID

2022-12-15 ⋅ ISC ⋅ Brad Duncan
Google ads lead to fake software pages pushing IcedID (Bokbot)
IcedID

2022-12-13 ⋅ Kroll ⋅ Dave Truman, George Glass, Keith Wojcieszek, Stephen Green
Threat Actors use Google Ads to Deploy VIDAR Stealer
Vidar

2022-12-07 ⋅ Google ⋅ Benoit Sevens, Clement Lecigne
Internet Explorer 0-day exploited by North Korean actor APT37

2022-11-10 ⋅ Zscaler ⋅ ThreatLabZ research team
Rise of Banking Trojan Dropper in Google Play
Xenomorph

2022-11-04 ⋅ Cleafy ⋅ Cleafy
The Android Malware’s Journey: From Google Play to banking fraud
Brunhilda Vultur

2022-10-24 ⋅ Youtube (Virus Bulletin) ⋅ Google Threat Analysis Group, Luca Nagy
Uncovering a broad criminal ecosystem powered by one of the largest botnets
Glupteba

2022-10-01 ⋅ Youtube (Virus Bulletin) ⋅ Google Threat Analysis Group, Luca Nagy
Uncovering a broad criminal ecosystem powered by one of the largest botnets, Glupteba. (slides)
Glupteba

2022-10-01 ⋅ Youtube (Virus Bulletin) ⋅ Google Threat Analysis Group, Luca Nagy
Uncovering a broad criminal ecosystem powered by one of the largest botnets, Glupteba.
Glupteba

2022-09-20 ⋅ Recorded Future ⋅ Insikt Group®
Threat Actors Continue to Abuse Google Tag Manager for Payment Card e-Skimming

2022-09-07 ⋅ Google ⋅ Google Threat Analysis Group, Pierre-Marc Bureau
Initial access broker repurposing techniques in targeted attacks against Ukraine
AnchorMail Cobalt Strike IcedID

2022-09-02 ⋅ nccgroup ⋅ Alberto Segura, Mike Stokkel
Sharkbot is back in Google Play
SharkBot

2022-08-29 ⋅ Check Point ⋅ Moshe Marelus
Check Point Research detects Crypto Miner malware disguised as Google translate desktop and other legitimate applications
Nitrokod

2022-08-23 ⋅ Google ⋅ Ajax Bash
New Iranian APT data extraction tool
HYPERSCRAPE

2022-08-16 ⋅ ThreatFabric ⋅ ThreatFabric
BugDrop: the first malware trying to circumvent Google's security Controls
Xenomorph

2022-08-10 ⋅ Google ⋅ Google Project Zero, Xingyu Jin
The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)

2022-07-28 ⋅ McAfee ⋅ Dexter Shin
New HiddenAds malware affects 1M+ users and hides on the Google Play Store
HiddenAd