Malpedia Library

2020-06-09 ⋅ McAfee ⋅ Alexandre Mundo
RagnarLocker Ransomware Threatens to Release Confidential Information
RagnarLocker

2020-06-09 ⋅ Microsoft ⋅ Rob Mead, Tom McElroy
Web shell threat hunting with Azure Sentinel and Microsoft Threat Protection

2020-06-09 ⋅ Malwarebytes ⋅ Threat Intelligence Team
Honda and Enel impacted by cyber attack suspected to be ransomware
Snake

2020-06-08 ⋅ KELA ⋅ Raveed Laeb
Schrodinger’s Threat – MagBo Adapts Access Control Policies

2020-06-08 ⋅ ESET Research ⋅ Anton Cherepanov, Zuzana Hromcová
InvisiMole: The Hidden Part of the Story - Unearthing InvisiMole's Espionage Toolset and Strategic Cooperations
InvisiMole RC2FM

2020-06-08 ⋅ SentinelOne ⋅ Phil Stokes
A Guide to macOS Threat Hunting and Incident Response

2020-06-08 ⋅ Twitter (@milkr3am) ⋅ milkream
First public tweet on cyber incident that Honda & Enelint was hit by Snake/Ekans ransomware
Snake

2020-06-08 ⋅ Stratosphere Lab ⋅ Twitter (@_lubiedo)
Dark Nexus: the old, the new and the ugly
Dark Nexus

2020-06-08 ⋅ Bleeping Computer ⋅ Ionut Ilascu
Honda investigates possible ransomware attack, networks impacted
Snake

2020-06-08 ⋅ VMWare Carbon Black ⋅ A C
TAU Threat Analysis: Hakbit Ransomware
Hakbit

2020-06-08 ⋅ Proofpoint ⋅ Dennis Schwarz, Georgi Mladenov, Michael Raggi, Proofpoint Threat Research Team
TA410: The Group Behind LookBack Attacks Against U.S. Utilities Sector Returns with New Malware
FlowCloud Lookback APT10 TA410

2020-06-07 ⋅ Zero2Automated Blog ⋅ 0verfl0w_
Dealing with Obfuscated Macros, Statically - NanoCore
Nanocore RAT

2020-06-05 ⋅ Google ⋅ Clement Lecigne, Google Threat Analysis Group
Exploits of a TAG analyst chasing in the wild (slides)

2020-06-05 ⋅ ⋅ Google ⋅ Clement Lecigne, Google Threat Analysis Group
Exploits of a TAG analyst chasing in the wild (video)

2020-06-05 ⋅ Zscaler ⋅ Gayathri Anbalagan
New Campaign Abusing StackBlitz Tool to Host Phishing Pages

2020-06-05 ⋅ ReversingLabs ⋅ Robert Simmons
Retread Ransomware: Identifying Satana to Understand "CoronaVirus"
Satana

2020-06-05 ⋅ Votiro ⋅ Votiro’s Research Team
Anatomy of a Well-Crafted UPS, FedEx, and DHL Phishing Email During COVID-19
Dridex

2020-06-05 ⋅ Hornetsecurity ⋅ Security Lab
Avaddon: From seeking affiliates to in-the-wild in 2 days
Avaddon

2020-06-04 ⋅ Raytheon Blackbird Technologies ⋅ Blackberry Research
Threat Spotlight: Tycoon Ransomware Targets Education and Software Sectors

2020-06-04 ⋅ PTSecurity ⋅ PT ESC Threat Intelligence
COVID-19 and New Year greetings: an investigation into the tools and methods used by the Higaisa group
Ghost RAT SongXY