Malpedia Library

Click here to download all references as Bib-File.•

2025-09-18 ⋅ Lumen ⋅ Black Lotus Labs
SystemBC – Bringing the Noise
SystemBC SystemBC

2025-09-17 ⋅ PRODAFT ⋅ PRODAFT
Modus Operandi of Subtle Snail
MINIBIKE

2025-09-17 ⋅ Bitdefender ⋅ Bogdan Zavadovschi
EggStreme Malware: Unpacking a New APT Framework Targeting a Philippine Military Company
STOWAWAY

2025-09-17 ⋅ Morado ⋅ Jayden Palacios
GLOBAL Ransomware - New Tactics Revealed
Global

2025-09-17 ⋅ GitLab ⋅ GitLab
Tech Note - BeaverTail variant distributed via malicious repositories and ClickFix lure
BeaverTail OtterCookie BeaverTail InvisibleFerret Beavertail GolangGhost

2025-09-16 ⋅ HUMAN ⋅ Adam Sell, Joao Marques, João Santos, Lindsay Kaye, Louisa Abel, Vikas Parthasarathy
Satori Threat Intelligence Alert: SlopAds Covers Fraud with Layers of Obfuscation
SlopAds

2025-09-16 ⋅ Wiz.io ⋅ Barak Sharoni, Merav Bar, Rami McCarthy
Shai-Hulud: Ongoing Package Supply Chain Worm Delivering Data-Stealing Malware
Shai-Hulud

2025-09-16 ⋅ Proofpoint ⋅ Greg Lesnewich, Mark Kelly, Nick Attfield, Proofpoint Threat Research Team
Going Underground: China-aligned TA415 Conducts U.S.-China Economic Relations Targeting Using VS Code Remote Tunnels

2025-09-16 ⋅ Infoblox ⋅ Infoblox Threat Intelligence Group
Deniability by Design: DNS-Driven Insights into a Malicious Ad Network

2025-09-16 ⋅ Sekoia ⋅ Amaury G., Charles M., Sekoia TDR
APT28 Operation Phantom Net Voxel
BEARDSHELL GRUNT SLIMAGENT

2025-09-16 ⋅ Reverse The Malware ⋅ Diyar Saadi
Analyze a Malicious Prompt Generator.

2025-09-15 ⋅ DeXpose ⋅ M4lcode
Threat Actor Profile: APT27

2025-09-15 ⋅ Qianxin ⋅ Acey9, Alex.Turing, Wang Hao
The Most Powerful Ever? Inside the 11.5Tbps-Scale Mega Botnet AISURU
Aisuru

2025-09-15 ⋅ Huntress Labs ⋅ Chad Hudson, Michael Elford
Huntress Threat Advisory: The Dangers of Storing Unencrypted Passwords
Akira

2025-09-15 ⋅ Zscalar ⋅ ThreatLabZ research team
SmokeLoader Rises From the Ashes
SmokeLoader

2025-09-14 ⋅ cocomelonc ⋅ cocomelonc
Malware development: persistence - part 28. CertPropSvc registry hijack. Simple C/C++ example

2025-09-14 ⋅ Genians ⋅ Genians
AI-Driven Deepfake Military ID Fraud Campaign by Kimsuky APT

2025-09-13 ⋅ Koi Security ⋅ Yuval Ronen
WhiteCobra's Playbook Exposed: Critical Mistake Reveals 24-Extension Campaign Targeting VS Code and Cursor
WhiteCobra

2025-09-12 ⋅ SOCRadar ⋅ Aaron Jornet, SOCRadar
BQTLock Ransomware
BQTlock

2025-09-12 ⋅ Medium (@zyadlzyatsoc) ⋅ Zyad Elzyat
XWorm Malware Analysis: SOC & IR Perspective on Persistence, C2, and Anti-Analysis Tactics
XWorm