Malpedia Library

Click here to download all references as Bib-File.•

2021-12-06 ⋅ Mandiant ⋅ Ashraf Abdalhalim, Ben Read, Doug Bienstock, Gabriella Roncone, Jonathan Leathery, Josh Madeley, Juraj Sucik, Luis Rocha, Luke Jenkins, Manfred Erjak, Marius Fodoreanu, Microsoft Detection and Response Team (DART), Microsoft Threat Intelligence Center (MSTIC), Mitchell Clarke, Parnian Najafi, Sarah Hawley, Wojciech Ledzion
Suspected Russian Activity Targeting Government and Business Entities Around the Globe (UNC2452)
Cobalt Strike CryptBot

2021-12-02 ⋅ ⋅ AhnLab ⋅ ASEC Analysis Team
Spreading AgentTesla through more sophisticated malicious PPT
Agent Tesla

2021-12-02 ⋅ Malwarebytes ⋅ Hossein Jazi, Threat Intelligence Team
SideCopy APT: Connecting lures to victims, payloads to infrastructure
SideCopy

2021-12-01 ⋅ Symantec ⋅ Symantec Threat Hunter Team
The Threat Landscape in 2021

2021-12-01 ⋅ Trend Micro ⋅ Trend Micro Research
Analyzing How TeamTNT Used Compromised Docker Hub Accounts
TeamTNT

2021-11-30 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Yanluowang: Further Insights on New Ransomware Threat
BazarBackdoor Cobalt Strike FiveHands

2021-11-30 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
Cyberspace's Magic Eye: PROMETHIUM Fakes attack activity analysis of NotePads and installation packages
StrongPity

2021-11-29 ⋅ ⋅ Qianxin Threat Intelligence Center ⋅ Red Raindrop Team
APT-Q-12: An intelligence espionage campaign targeting the trade industry
Unidentified 100 (APT-Q-12) APT-C-60

2021-11-29 ⋅ CrowdStrike ⋅ Falcon OverWatch Team
Nowhere to Hide: Detecting SILENT CHOLLIMA’s Custom Tooling

2021-11-24 ⋅ Telsy ⋅ Telsy Research Team
Possible attack to Telco company in Middle East
GRUNT

2021-11-24 ⋅ Google ⋅ Google Cybersecurity Action Team, Google Threat Analysis Group
Threat Horizons Cloud Threat Intelligence November 2021. Issue 1
BlackMatter

2021-11-24 ⋅ Sansec ⋅ Sansec Threat Research Team
CronRAT malware hides behind February 31st
CronRAT

2021-11-18 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: DanaBot’s Evolution from Bank Fraud to DDos Attacks
DanaBot

2021-11-18 ⋅ Red Canary ⋅ The Red Canary Team
Intelligence Insights: November 2021
Andromeda Conti LockBit QakBot Squirrelwaffle

2021-11-18 ⋅ Sansec ⋅ Sansec Threat Research Team
Linux malware agent hits eCommerce sites

2021-11-16 ⋅ AhnLab ⋅ ASEC Analysis Team
Analysis Report of Kimsuky Group's APT Attacks (AppleSeed, PebbleDash)
Appleseed PEBBLEDASH

2021-11-16 ⋅ Digital Shadows ⋅ Photon Research Team
Vulnerability Intelligence: What’s the Word in Dark Web Forums?

2021-11-16 ⋅ Mandiant ⋅ Alden Wahlstrom, Alice Revelli, Ben Read, David Mainor, Gabriella Roncone, Mandiant Research Team, Sam Riddell
UNC1151 Assessed with High Confidence to have Links to Belarus, Ghostwriter Campaign Aligned with Belarusian Government Interests
Ghostwriter

2021-11-16 ⋅ Malwarebytes ⋅ Malwarebytes Threat Intelligence Team
TrickBot helps Emotet come back from the dead
Emotet TrickBot

2021-11-15 ⋅ binarly ⋅ Binarly Team
Design issues of modern EDRs: bypassing ETW-based solutions
ESPecter FinFisher RAT