Malpedia Library

Click here to download all references as Bib-File.•

2021-07-22 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Ransomware gang breached CNA’s network via fake browser update

2021-07-22 ⋅ Trend Micro ⋅ Mickey Jin, Steven Du
Updated XCSSET Malware Targets Telegram, Other Apps
XCSSET

2021-07-22 ⋅ Medium michaelkoczwara ⋅ Michael Koczwara
Cobalt Strike Hunting — simple PCAP and Beacon Analysis
Cobalt Strike

2021-07-22 ⋅ Group-IB ⋅ Anton Ushakov, Roberto Martinez
The Fraud Family Fraud-as-a-Service operation targeting Dutch residents

2021-07-21 ⋅ ⋅ CERT-FR ⋅ ANSSI
INDICATEURS DE COMPROMISSION DU CERT-FR
SoWaT APT31

2021-07-21 ⋅ Twitter (@bkMSFT) ⋅ Ben Koehl
Tweet on an ANSSI report detailing APT31 intrusions in France
SoWaT APT31

2021-07-21 ⋅ Twitter (@billyleonard) ⋅ Billy Leonard
Tweet on APT31 using a router implant.
SoWaT

2021-07-21 ⋅ ⋅ TEAMT5 ⋅ Jason3e7, Peter, Tom
"Le" is not tired of this, IE is really naughty
Magniber

2021-07-21 ⋅ ⋅ MBSD ⋅ Kei Sugawara, Takashi Yoshikawa
Analysis of malware (wiper) with Japanese file names related to the Tokyo Olympics
VIGILANT CLEANER

2021-07-21 ⋅ Quick Heal ⋅ Rumana Siddiqui
FormBook Malware Returns: New Variant Uses Steganography and In-Memory Loading of multiple stages to steal data
Formbook

2021-07-21 ⋅ eSentire ⋅ eSentire
Notorious Cybercrime Gang, FIN7, Lands Malware in Law Firm Using Fake Legal Complaint Against Jack Daniels’ Owner, Brown-Forman Inc.

2021-07-21 ⋅ Department of Justice ⋅ Department of Justice
Estonian Citizen Pleads Guilty to Computer Fraud and Abuse (Pavel Tsurkan)

2021-07-21 ⋅ Bitdefender ⋅ Bogdan Botezatu, Victor Vrabie
LuminousMoth – PlugX, File Exfiltration and Persistence Revisited
PlugX

2021-07-21 ⋅ Trend Micro ⋅ Fyodor Yarochkin, Steven Du, Zhengyu Dong
StrongPity APT Group Deploys Android Malware for the First Time

2021-07-21 ⋅ Check Point ⋅ Check Point Research
Top prevalent malware with a thousand campaigns migrates to macOS
Xloader

2021-07-21 ⋅ Twitter (@AltShiftPrtScn) ⋅ Peter Mackenzie
Tweet on Conti ransomware actor installing AnyDesk for remote access in victim environment
Conti

2021-07-21 ⋅ Youtube (OALabs) ⋅ OALabs
Warzone RAT Config Extraction With Python and IDA Pro
Ave Maria

2021-07-21 ⋅ secure.software ⋅ secure.software
Groundhog day: NPM package caught stealing browser passwords

2021-07-21 ⋅ splunk ⋅ Splunk Threat Research Team
Detecting Trickbot with Splunk
TrickBot

2021-07-21 ⋅ Malwarebytes ⋅ Malwarebytes
The life and death of the ZeuS Trojan
Zeus