Malpedia Library

Click here to download all references as Bib-File.•

2023-08-10 ⋅ CrowdStrike ⋅ Counter Adversary Operations, Ken Balint, Marco Ortisi, Nicolas Zilio
Discovering and Blocking a Zero-Day Exploit with CrowdStrike Falcon Complete: The Case of CVE-2023-36874

2023-08-10 ⋅ Twitter (@malwrhunterteam) ⋅ MalwareHunterTeam
Tweet on the sample discovery
Unidentified 109 (Lazarus?)

2023-08-08 ⋅ Cisco Talos ⋅ Cisco Talos
What Cisco Talos knows about the Rhysida ransomware
Rhysida

2023-08-07 ⋅ Cisco Talos ⋅ Chetan Raghuprasad
New threat actor targets Bulgaria, China, Vietnam and other countries with customized Yashma ransomware
Chaos

2023-07-14 ⋅ Proofpoint ⋅ Threat Insight
Tweets on Discovery of WikiLoader
WikiLoader

2023-06-23 ⋅ Phylum ⋅ Phylum Research Team
Phylum Discovers Sophisticated Ongoing Attack on NPM

2023-05-30 ⋅ SANS ISC ⋅ Brad Duncan
Malspam pushes ModiLoader (DBatLoader) infection for Remcos RAT
DBatLoader

2023-04-28 ⋅ DISCARDED Podcast ⋅ Joe Wise, Pim Trouerbach
Beyond Banking: IcedID Gets Forked
IcedID PhotoLoader

2023-04-27 ⋅ Lookout ⋅ Alemdar Islamoglu, Justin Albrecht, Kyle Schmittle, Paul Shunk
Lookout Discovers Android Spyware Tied to Iranian Police Targeting Minorities: BouldSpy
DAAM

2023-04-25 ⋅ Elastic ⋅ Daniel Stepanic
Elastic Security Labs discovers the LOBSHOT malware
LOBSHOT

2023-04-18 ⋅ Cisco Talos ⋅ Matthew Olney
State-sponsored campaigns target global network infrastructure

2023-04-18 ⋅ NCSC UK ⋅ CISA, FBI, NCSC UK, NSA
APT28 exploits known vulnerability to carry out reconnaissance and deploy malware on Cisco routers

2023-04-18 ⋅ NCSC UK ⋅ United Kingdom’s National Cyber Security Centre (NCSC-UK)
Jaguar Tooth - Cisco IOS malware that collects device information and enables backdoor access

2023-04-13 ⋅ CyberArk ⋅ CyberArk Labs
The (Not so) Secret War on Discord
Empyrean

2023-04-12 ⋅ SANS ISC ⋅ Brad Duncan
Recent IcedID (Bokbot) activity
IcedID

2023-04-04 ⋅ Cisco Talos ⋅ Edmund Brumaghin
Typhon Reborn V2: Updated stealer features enhanced anti-analysis and evasion capabilities
Typhon Stealer

2023-03-23 ⋅ Mandiant ⋅ Josh Fleischer, Rufus Brown, Ryan Tomcik
UNC961 in the Multiverse of Mandiant: Three Encounters with a Financially Motivated Threat Actor
HOLERUN LIGHTBUNNY Prophet Spider

2023-03-22 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Jaeson Schultz
Emotet Resumes Spam Operations, Switches to OneNote
Emotet

2023-03-14 ⋅ Cisco Talos ⋅ Asheer Malhotra, Vitor Ventura
Talos uncovers espionage campaigns targeting CIS countries, embassies and EU health care agency
Poet RAT Loda Kasablanka YoroTrooper

2023-02-02 ⋅ Kroll ⋅ Elio Biasiotto, Stephen Green
Hive Ransomware Technical Analysis and Initial Access Discovery
BATLOADER Cobalt Strike Hive