Malpedia Library

Click here to download all references as Bib-File.•

2024-01-16 ⋅ S2W LAB Inc. ⋅ Minyeop Choi
Detailed Analysis of DarkGate; Investigating new top-trend backdoor malware
DarkGate

2024-01-15 ⋅ TRUESEC ⋅ Viktor Sahin-Uppströmer
A Victim of Mallox Ransomware: How Truesec CSIRT Fought Back
TargetCompany

2024-01-14 ⋅ SecurityScorecard ⋅ SecurityScorecard STRIKE Team
Operation 99: North Korean State Sponsored Supply Chain Attack on Tech Innovation

2024-01-13 ⋅ YouTube (Embee Research) ⋅ Embee_research
Cobalt Strike Shellcode Analysis and C2 Extraction
Cobalt Strike

2024-01-12 ⋅ cyble ⋅ Cyble
Sneaky Azorult Back in Action and Goes Undetected
Azorult

2024-01-12 ⋅ Mandiant ⋅ Dimiter Andonov, Gabby Roncone, John Wolfram, Matt Lin, Robert Wallace, Tyler McLellan
Cutting Edge: Suspected APT Targets Ivanti Connect Secure VPN in New Zero-Day Exploitation
UTA0178

2024-01-11 ⋅ Forescout ⋅ Jos Wetzels
Clearing the Fog of War – A critical analysis of recent energy sector cyberattacks in Denmark and Ukraine

2024-01-10 ⋅ Volexity ⋅ Matthew Meltzer, Robert Jan Mora, Sean Koessel, Steven Adair, Thomas Lancaster
Active Exploitation of Two Zero-Day Vulnerabilities in Ivanti Connect Secure VPN
UTA0178

2024-01-10 ⋅ Medium knight0x07 ⋅ 0x4427, knight0x07
Analyzing APT28’s OCEANMAP Backdoor & Exploring its C2 Server Artifacts
OCEANMAP

2024-01-09 ⋅ Securonix ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
New RE#TURGENCE Attack Campaign: Turkish Hackers Target MSSQL Servers to Deliver Domain-Wide MIMIC Ransomware
Mimic Ransomware

2024-01-09 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Charles Steven Derion, Francisrey Joshua Castillo, Henry Salcedo, Ian Kenefick, John Carlo Marquez, John Rainier Navato, Joshua Aquino, Juhn Emmanuel Atanque, Raymart Yambot, Shinji Robert Arasawa
Black Basta-Affiliated Water Curupira’s Pikabot Spam Campaign
Pikabot Water Curupira

2024-01-08 ⋅ Fortinet ⋅ Cara Lin
Deceptive Cracked Software Spreads Lumma Variant on YouTube
Lumma Stealer

2024-01-08 ⋅ YouTube (Embee Research) ⋅ Embee_research
Malware Analysis - Powershell decoding and .NET C2 Extraction (Quasar RAT)
Quasar RAT

2024-01-08 ⋅ YouTube (Embee Research) ⋅ Embee_research
Malware Analysis - Simple Javascript Decoding and C2 Extraction (Redline Stealer)
RedLine Stealer

2024-01-05 ⋅ Twitter (@greglesnewich) ⋅ Greg Lesnewich
Tweets about a SpectralBlur a macOS sample
SpectralBlur

2024-01-05 ⋅ HUNT & HACKETT ⋅ Hunt & Hackett Research Team
Turkish espionage campaigns in the Netherlands
SnappyTCP

2024-01-04 ⋅ ClearSky ⋅ ClearSky
No-Justice Wiper - Wiper attack on Albania by Iranian APT)
No-Justice

2024-01-03 ⋅ Applied GAI in Security ⋅ Brandon Dixon
Security Copilot Promptbook: Threat Actor Profile
Storm-0826

2024-01-03 ⋅ Uptycs ⋅ Karthickkumar Kathiresan, Shilpesh Trivedi
Ukraine Targeted by UAC-0050 Using Remcos RAT Pipe Method for Evasion
Remcos

2024-01-02 ⋅ HackRead ⋅ WAQAS
Iranian Food Delivery Giant Snappfood Cyber Attack: 3TB of Data Stolen
IRLeaks