Malpedia Library

Click here to download all references as Bib-File.•

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Clean Ursa
PowerShower Inception Framework

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Nascent Ursa
Saint Bot SaintBear

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Ruinous Ursa
WhisperGate DEV-0586

2022-06-17 ⋅ Zscaler ⋅ Kaivalya Khursale, Sudeep Singh
Resurgence of Voicemail-themed phishing attacks targeting key industry verticals in the US

2022-06-15 ⋅ AttackIQ ⋅ AttackIQ Adversary Research Team, Jackson Wells
Attack Graph Emulating the Conti Ransomware Team’s Behaviors
BazarBackdoor Conti TrickBot

2022-06-03 ⋅ AttackIQ ⋅ AttackIQ Adversary Research Team, Jackson Wells
Attack Graph Response to US CERT AA22-152A: Karakurt Data Extortion Group
Cobalt Strike MimiKatz

2022-04-22 ⋅ Mandiant ⋅ Mandiant
FIN7 Power Hour: Adversary Archaeology and the Evolution of FIN7
POWERTRASH Carbanak DICELOADER STONEBOAT

2022-04-11 ⋅ Cluster25 ⋅ APT + Intelligence
DPRK-Nexus Adversary Targets South-Korean Individuals In A New Chapter of Kitty Phishing Operation

2022-04-04 ⋅ Mandiant ⋅ Brendan McKeague, Bryce Abdo, Ioana Teaca, Zander Work
FIN7 Power Hour: Adversary Archaeology and the Evolution of FIN7
Griffon BABYMETAL Carbanak Cobalt Strike JSSLoader Termite

2022-04-01 ⋅ META
Adversarial Threat Report

2022-03-30 ⋅ Zscaler ⋅ Kaivalya Khursale, Mitesh Wani
Analysis of BlackGuard - a new info stealer malware being sold in a Russian hacking forum
BlackGuard

2022-03-28 ⋅ InsomniHack 2022 ⋅ Georges-Bastien Michel
Forging golden hammer against Android software protection tools - A deep dive inside anti-reverse & universal bypass with Frida

2022-03-28 ⋅ Intezer ⋅ Joakim Kennedy, Ryan Robinson
New Conversation Hijacking Campaign Delivering IcedID
IcedID PhotoLoader

2022-03-12 ⋅ Arash's Blog ⋅ Arash Parsa
Analyzing Malware with Hooks, Stomps, and Return-addresses
Cobalt Strike

2022-01-31 ⋅ CyberArk ⋅ Arash Parsa
Analyzing Malware with Hooks, Stomps and Return-addresses
Cobalt Strike

2022-01-31 ⋅ CyberScoop ⋅ AJ Vicens
Conversation with a top Ukrainian cyber official: What we know, what we don't, what it means
Saint Bot

2022-01-27 ⋅ SCYTHE ⋅ Christopher Peacock, Jorge Orchilles, Nathali Cano
Adversary Emulation Diavol Ransomware #ThreatThursday
Diavol

2022-01-18 ⋅ Recorded Future ⋅ Insikt Group®
2021 Adversary Infrastructure Report
BazarBackdoor Cobalt Strike Dridex IcedID QakBot TrickBot

2021-12-03 ⋅ vmware ⋅ VMWare
TigerRAT – Advanced Adversaries on the Prowl
Tiger RAT

2021-10-08 ⋅ Virus Bulletin ⋅ Seongsu Park
Multi-universe of adversary: multiple campaigns of the Lazarus group and their connections
Dacls AppleJeus AppleJeus Bankshot BookCodes RAT Dacls DRATzarus LCPDot LPEClient