Malpedia Library

Click here to download all references as Bib-File.•

2022-01-01 ⋅ Toli Security ⋅ Toli Security
IoT Botnet exploiting Log4J CVE-2021-44228

2022-01-01 ⋅ Toli Security ⋅ Toli Security
Active crypto-mining operation by TeamTNT
TeamTNT

2022-01-01 ⋅ forensicitguy ⋅ Tony Lambert
Analyzing an IcedID Loader Document
IcedID

2021-12-31 ⋅ 0ffset Blog ⋅ Chuong Dong
HANCITOR: Analysing The Main Loader
Hancitor

2021-12-31 ⋅ victory medium ⋅ Zach Edwards
Compromised Godaddy Infrastructure Attacking Numerous U.S. Government Websites to Promote “Canadian Pharmacy” Scam Websites

2021-12-31 ⋅ ⋅ CERT.PL ⋅ Marcin Dudek, Michał Praszmo
IKO activation - Malware campaign
Coper

2021-12-31 ⋅ InfoSec Handlers Diary Blog ⋅ Jan Kopriva
Do you want your Agent Tesla in the 300 MB or 8 kB package?
Agent Tesla

2021-12-30 ⋅ Cloudsek ⋅ Anandeshwar Unnikrishnan, Isha Tripathi
Technical Analysis of Khonsari Ransomware Campaign Exploiting the Log4Shell Vulnerability
Khonsari

2021-12-30 ⋅ LIFARS ⋅ Vlad Pasca
A Deep Dive into The Grief Ransomware’s Capabilities
DoppelPaymer

2021-12-30 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Lights Out in Isfahan

2021-12-30 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Agent Tesla Updates SMTP Data Exfiltration Technique
Agent Tesla

2021-12-30 ⋅ GovInfo Security ⋅ Mathew J. Schwartz
Vice Society: Ransomware Gang Disrupted Spar Stores
HelloKitty

2021-12-29 ⋅ CrowdStrike ⋅ Benjamin Wiley, Falcon OverWatch Team
OverWatch Exposes AQUATIC PANDA in Possession of Log4Shell Exploit Tools During Hands-on Intrusion Attempt
Earth Lusca

2021-12-29 ⋅ Palo Alto Networks Unit 42 ⋅ Daiping Liu, Jielong Xu, Wanjin Li, Zhanhao Chen
Strategically Aged Domain Detection: Capture APT Attacks With DNS Traffic Trends
Chrysaor SUNBURST

2021-12-29 ⋅ CrowdStrike ⋅ Benjamin Wiley, Falcon OverWatch Team
OverWatch Exposes AQUATIC PANDA in Possession of Log4Shell Exploit Tools During Hands-on Intrusion Attempt
Cobalt Strike

2021-12-29 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
AsyncRAT Configuration Parser
AsyncRAT

2021-12-29 ⋅ Aqua ⋅ Nitzan Yaakov
Threat Alert: Evolving Attack Techniques of Autom Cryptomining Campaign

2021-12-29 ⋅ Blake's R&D ⋅ Blake
Cobalt Strike DFIR: Listening to the Pipes
Cobalt Strike

2021-12-29 ⋅ Nikkei Asia ⋅ Ryoma Kashiwagi
Japan aerospace cyberattacks show link to Chinese military: police (PLA Unit 61419)

2021-12-28 ⋅ AhnLab ⋅ ASEC Analysis Team
APT Attack Cases of Kimsuky Group (PebbleDash)
PEBBLEDASH