Malpedia Library

Click here to download all references as Bib-File.•

2024-07-29 ⋅ Mandiant ⋅ Ashley Pearson, Jake Nicastro, Joseph Pisano, Josh Murchie, Joshua Shilko, Raymond Leong
UNC4393 Goes Gently into the SILENTNIGHT
Black Basta QakBot sRDI SystemBC Zloader UNC3973 UNC4393

2024-07-25 ⋅ Symantec ⋅ Symantec
Growing Number of Threats Leveraging AI
Broomstick DBatLoader NetSupportManager RAT Rhadamanthys

2024-07-23 ⋅ Symantec ⋅ Threat Hunter Team
Daggerfly: Espionage Group Makes Major Update to Toolset
Nightdoor

2024-07-22 ⋅ Cyber Shafarat ⋅ Treadstone 71
Hacking group Anonymous KSA, a notorious threat actor, is targeting India in a series of cyber attacks
Anonymous KSA

2024-07-13 ⋅ cocomelonc ⋅ cocomelonc
Malware development: persistence - part 25. Create symlink from legit to evil. Simple C example.

2024-07-01 ⋅ Twitter (@DailyDarkWeb) ⋅ Dark Web Intelligence
Tweet on Anonymous KSA
Anonymous KSA

2024-06-12 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Black Basta UNC4393

2024-06-12 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Black Basta

2024-06-05 ⋅ Mandiant ⋅ Jamie Collier, Michelle Cantos
Phishing for Gold: Cyber Threats Facing the 2024 Paris Olympics
Callisto

2024-06-05 ⋅ Symantec ⋅ Symantec Threat Intelligence
RansomHub: New Ransomware has Origins in Older Knight
Knight RansomHub RansomHub

2024-06-02 ⋅ Microsoft ⋅ Clint Watts
How Russia is trying to disrupt the 2024 Paris Olympic Games
Storm-1679

2024-05-16 ⋅ Symantec ⋅ Threat Hunter Team
Springtail: New Linux Backdoor Added to Toolkit
Gomir Kimsuky

2024-04-04 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team, Team Cymru, TEAM CYMRU S2 THREAT RESEARCH
Latrodectus: This Spider Bytes Like Ice
IcedID Latrodectus

2024-03-05 ⋅ Team Cymru ⋅ S2 Research Team
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs?
Coper

2024-03-01 ⋅ farghlymal github.io ⋅ Aziz Farghly
Taking a deep dive into SmokeLoader
SmokeLoader

2024-02-10 ⋅ Nofix.re ⋅ Nofix
KrustyLoader - About stripped Rust symbol recovery
KrustyLoader

2024-02-04 ⋅ Infostealers ⋅ LambdaMamba
CrackedCantil: A Malware Symphony Breakdown
CrackedCantil

2024-01-31 ⋅ IBM X-Force Exchange ⋅ IBM Security X-Force Team
CrackedCantil: A Malware Symphony Breakdown
CrackedCantil

2024-01-30 ⋅ ANY.RUN ⋅ Lena (LambdaMamba)
CrackedCantil: A Malware Symphony Breakdown - PrivateLoader, Smoke, Lumma, RedLine, RisePro, Amadey, Stealc, Socks5Systemz, STOP
Amadey CrackedCantil Lumma Stealer PrivateLoader RedLine Stealer RisePro SmokeLoader Socks5 Systemz Stealc STOP

2024-01-23 ⋅ Trend Micro ⋅ Christian Alpuerto, Christian Jason Geollegue, Don Ovid Ladores, Emmanuel Panopio, Emmanuel Roll, Francesca Villasanta, Gerald Fernandez, Julius Keith Estrellado, Raighen Sanchez, Raymart Yambot, Rhio Manaog, Shawn Austin Santos, Sophia Nilette Robles
Kasseika Ransomware Deploys BYOVD Attacks, Abuses PsExec and Exploits Martini Driver
Kasseika