Malpedia Library

Click here to download all references as Bib-File.•

2021-02-22 ⋅ National Security and Defense Council of Ukraine ⋅ Organization of the National Security and Defense Council of Ukraine
The NCCC at the NSDC of Ukraine warns of a new mechanism of attacks on Ukrainian infrastructure

2021-02-22 ⋅ YouTube ( Malware_Analyzing_&_RE_Tips_Tricks) ⋅ Jiří Vinopal
Ryuk Ransomware API Resolving in 10 minutes
Ryuk

2021-02-22 ⋅ Check Point Research ⋅ Eyal Itkin, Itay Cohen
The Story of Jian – How APT31 Stole and Used an Unknown Equation Group 0-Day

2021-02-22 ⋅ FireEye ⋅ Andrew Moore, Genevieve Stark, Isif Ibrahima, Kimberly Goody, Van Ta
Cyber Criminals Exploit Accellion FTA for Data Theft and Extortion
DEWMODE Clop

2021-02-21 ⋅ ⋅ Antiy ⋅ Antiy CERT
Analysis report on the attack activities of the "Baby Elephant" against Pakistani defense manufacturers

2021-02-20 ⋅ NDSS ⋅ Alessandro Mantovani, Alexander Küchler, Davide Balzarotti, Leyla Bilge, Yufei Han
Does Every Second Count? Time-based Evolution of Malware Behavior in Sandboxes

2021-02-19 ⋅ K7 Security ⋅ Partheeban J
GitHub – Home to AsyncRAT Backdoor
AsyncRAT

2021-02-19 ⋅ Medium 0xthreatintel ⋅ 0xthreatintel
How to unpack SManager APT tool?
SManager

2021-02-19 ⋅ GEMINI ⋅ GEMINI
Alleged Hydra Market Operators Identified

2021-02-19 ⋅ THE NEW STACK ⋅ Dror Alon, Lior Sonntag
Behind the Scenes of the SunBurst Attack
SUNBURST

2021-02-19 ⋅ Lawfare Blog ⋅ Sonja Swanbeck
How to Understand Iranian Information Operations

2021-02-19 ⋅ The Record ⋅ Adam Janofsky, Timo Steffens
Cyber Attribution Is More Art Than Science. This Researcher Has a Plan to Change That

2021-02-19 ⋅ Palo Alto Networks Unit 42 ⋅ Dominik Reichel
IronNetInjector: Turla’s New Malware Loading Tool
Agent.BTZ IronNetInjector TurlaRPC

2021-02-18 ⋅ Symantec ⋅ Threat Hunter Team
Lazarus: Three North Koreans Charged for Financially Motivated Attacks
AppleJeus POOLRAT Unidentified macOS 001 (UnionCryptoTrader) AppleJeus Unidentified 077 (Lazarus Downloader)

2021-02-18 ⋅ Bitdefender ⋅ Cristina Vatamanu, Gheorghe Adrian Schipor, Rickey Gevers
Iranian APT Makes a Comeback with “Thunder and Lightning” Backdoor and Espionage Combo
Infy Tonnerre

2021-02-18 ⋅ Red Canary ⋅ Tony Lambert
Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight
Silver Sparrow

2021-02-18 ⋅ JPCERT/CC ⋅ Kota Kino
Further Updates in LODEINFO Malware
LODEINFO

2021-02-18 ⋅ ⋅ NTT Security ⋅ Hiroki Hada
nccTrojan used in targeted attack by TA428 group against defense and aviation organizations
nccTrojan

2021-02-17 ⋅ G Data ⋅ Karsten Hahn
SectopRAT: New version adds encrypted communication
SectopRAT

2021-02-17 ⋅ K7 Security ⋅ Lokesh J
GuLoader Snowballs via MalSpam Campaigns
CloudEyE