Malpedia Library

Click here to download all references as Bib-File.•

2021-03-02 ⋅ ⋅ Hispasec ⋅ Hispasec Sistemas
Campaña Fedex Banker
FluBot

2021-03-02 ⋅ ReversingLabs ⋅ Karlo Zanki
Malware in images

2021-03-02 ⋅ Metabase Q ⋅ Jesus Dominguez, Ocelot Offensive Security Team
Ploutus is back, targeting Itautec ATMs in Latin America
Ploutus ATM

2021-03-02 ⋅ Volexity ⋅ Josh Grunzweig, Matthew Meltzer, Sean Koessel, Steven Adair, Thomas Lancaster
Operation Exchange Marauder: Active Exploitation of Multiple Zero-Day Microsoft Exchange Vulnerabilities
CHINACHOPPER HAFNIUM

2021-03-02 ⋅ Github (microsoft) ⋅ Microsoft
Microsoft-365-Defender-Hunting-Queries for hunting Gootkit malware delivery and C2
GootKit

2021-03-02 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Security Intelligence
Tweet on Gootkit malware campaign
GootKit

2021-03-02 ⋅ Cisco Talos ⋅ Asheer Malhotra
ObliqueRAT returns with new campaign using hijacked websites
Oblique RAT

2021-03-02 ⋅ Atlantic Council ⋅ James Shires, JD Work, Luca Allodi, Patrick Howell O'Neill, Robert Morgus, Trey Herr, Winnona Desombre
Countering Cyber Proliferation: Zeroing in on Access-as-a-Service

2021-03-02 ⋅ Medium Mehmet Ergene ⋅ Mehmet Ergene
Hunting for the Behavior: Scheduled Tasks

2021-03-02 ⋅ Intezer ⋅ Joakim Kennedy
When Viruses Mutate: Did SunCrypt Ransomware Evolve from QNAPCrypt?
QNAPCrypt SunCrypt

2021-03-01 ⋅ Group-IB ⋅ Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
Ransomware Uncovered 2020/2021
RansomEXX BazarBackdoor Buer Clop Conti DoppelPaymer Dridex Egregor IcedID Maze PwndLocker QakBot RansomEXX REvil Ryuk SDBbot TrickBot Zloader

2021-03-01 ⋅ Trend Micro ⋅ Don Ovid Ladores
Povlsomware Ransomware Features Cobalt Strike Compatibility
Povlsomware

2021-03-01 ⋅ AWAKE ⋅ Jason Bevis
The Unseen One: Hades Ransomware Gang or Hafnium
Hades

2021-03-01 ⋅ Techtarget ⋅ Rob Wright
Ransomware negotiations: An inside look at the process
REvil

2021-03-01 ⋅ Dr.Web ⋅ Dr.Web
Study of the Spyder modularbackdoor for targeted attacks
Spyder

2021-03-01 ⋅ ⋅ CCN-CERT ⋅ CCN-CERT
Informe Código DañinoCCN-CERT ID-03/21: RyukRansomware
Ryuk

2021-03-01 ⋅ Microsoft ⋅ Microsoft
Detect and defend against the recent nation-state cyber attack
SUNBURST

2021-03-01 ⋅ sonatype ⋅ Ax Sharma
Newly Identified Dependency Confusion Packages Target Amazon, Zillow, and Slack; Go Beyond Just Bug Bounties

2021-03-01 ⋅ YouTube ( Malware_Analyzing_&_RE_Tips_Tricks) ⋅ Jiří Vinopal
Ryuk Ransomware - Advanced using of Scylla for Imports reconstruction
Ryuk

2021-02-28 ⋅ Recorded Future ⋅ Insikt Group®
China-linked Group RedEcho Targets the Indian Power Sector Amid Heightened Border Tensions
PlugX ShadowPad RedEcho