Malpedia Library

Click here to download all references as Bib-File.•

2021-01-26 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Mimecast links security breach to SolarWinds hackers
SUNBURST

2021-01-26 ⋅ Twitter (@RedDrip7) ⋅ RedDrip Team
Tweet on DPRK malware used to target security researchers

2021-01-26 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Shell Break-Lazarus (APT-C-26) organized targeted attacks against security researchers to reveal the secret

2021-01-26 ⋅ ⋅ Anheng Threat Intelligence Center ⋅ Hunting Shadow Lab
Undefeated, hackers use Visual Studio compiler features to target binary vulnerabilities security researcher

2021-01-26 ⋅ Trend Micro ⋅ Trend Micro Research
Examining a Sodinokibi Attack
REvil

2021-01-26 ⋅ Medium 0xthreatintel ⋅ 0xthreatintel
Reversing APT Tool : SManager (Unpacked)
SManager

2021-01-26 ⋅ Kaspersky Labs ⋅ Kaspersky Lab ICS CERT
SunBurst industrial victims
SUNBURST

2021-01-25 ⋅ ⋅ Cert-AgID ⋅ Cert-AgID
Individuato sito che veicola in Italia un APK malevolo
Oscorp

2021-01-25 ⋅ Trend Micro ⋅ Fyodor Yarochkin, Loseway Lu, Marshall Chen, Matsukawa Bakuei, Vladimir Kropotov
Fake Office 365 Used for Phishing Attacks on C-Suite Targets

2021-01-25 ⋅ CYBER GEEKS All Things Infosec ⋅ CyberMasterV
A detailed analysis of ELMER Backdoor used by APT16
ELMER

2021-01-25 ⋅ ZenGo ⋅ Tal Be'ery
Ungilded Secrets: A New Paradigm for Key Security
SUNBURST

2021-01-25 ⋅ SOC Prime ⋅ Emanuele De Lucia
Affiliates vs Hunters: Fighting the DarkSide
DarkSide

2021-01-25 ⋅ Twitter (@IntelAdvanced) ⋅ Advanced Intelligence
Tweet on Ryuk Ransomware group's post exploitation tactics including usage of Keethief tool
Ryuk

2021-01-25 ⋅ Netresec ⋅ Erik Hjelmvik
Twenty-three SUNBURST Targets Identified
SUNBURST

2021-01-24 ⋅ malwareandstuff blog ⋅ Andreas Klopsch
Catching Debuggers with Section Hashing

2021-01-24 ⋅ evotec ⋅ Przemyslaw Klys
The only command you will ever need to understand and fix your Group Policies (GPO)

2021-01-24 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Another ransomware (Avaddon) now uses DDoS attacks to force victims to pay
Avaddon

2021-01-23 ⋅ Youtube (MalwareAnalysisForHedgehogs) ⋅ Karsten Hahn
Malware Analysis - Fileless GooLoad static analysis and unpacking

2021-01-22 ⋅ Twitter (@bryceabdo) ⋅ Bryce
Tweet on GRIMAGENT malware used by UNC1878 during some #RYUK intrusions in 2020
GRIMAGENT

2021-01-22 ⋅ Trimarc Security ⋅ Scott W Blake
LDAP Channel Binding and Signing