Malpedia Library

Click here to download all references as Bib-File.•

2020-03-31 ⋅ Youtube (Infosec Alpha) ⋅ Raashid Bhat
Emotet Binary Deobfuscation | Coconut Paradise | Episode 1
Emotet

2020-03-31 ⋅ Trustwave ⋅ Joshua Deacon, Lloyd Macrohon
An In-depth Look at MailTo Ransomware, Part One of Three
Mailto

2020-03-31 ⋅ Click All the Things! Blog ⋅ Jamie
LokiBot: Getting Equation Editor Shellcode
Loki Password Stealer (PWS)

2020-03-31 ⋅ Bitdefender ⋅ Alin Mihai Barbatei, Ioan-Septimiu Dinulica, Oana Asoltanei
Infected Zoom Apps for Android Target Work-From-Home Users
HiddenAd

2020-03-31 ⋅ Volexity ⋅ Volexity Threat Research
Storm Cloud Unleashed: Tibetan Focus of Highly Targeted Fake Flash Campaign
SpyNote Stitch Godlike12 Storm Cloud

2020-03-31 ⋅ ZDNet ⋅ Catalin Cimpanu
FBI re-sends alert about supply chain attacks for the third time in three months
Kwampirs

2020-03-31 ⋅ Kaspersky Labs ⋅ Félix Aime, Ivan Kwiatkowski, Pierre Delcher
Holy water: ongoing targeted water-holing attack in Asia
Godlike12

2020-03-31 ⋅ Intel 471 ⋅ Intel 471
REvil Ransomware-as-a-Service – An analysis of a ransomware affiliate operation
Gandcrab REvil

2020-03-30 ⋅ EST Security ⋅ Alyac
The 'Spy Cloud' Operation: Geumseong121 group carries out the APT attack disguising the evidence of North Korean defection

2020-03-30 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Banking Malware Spreading via COVID-19 Relief Payment Phishing
Zloader

2020-03-30 ⋅ One Night in Norfolk ⋅ Kevin Perlow
A New Look at Old Dragonfly Malware (Goodor)
Goodor

2020-03-27 ⋅ ZDNet ⋅ Catalin Cimpanu
Booz Allen analyzed 200+ Russian hacking operations to better understand their tactics

2020-03-26 ⋅ ⋅ Qianxin ⋅ Red Raindrop Team
COVID-19 | Analysis Report of Global Epidemic-Related Cyber Attacks Covered by New Crown Virus
METALJACK

2020-03-26 ⋅ ⋅ Tencent ⋅ Tencent
Summary of recent APT attack activities using "New Crown Outbreak (COVID-19)" as bait
METALJACK

2020-03-26 ⋅ TechCrunch ⋅ Zack Whittaker
Cyber insurer Chubb had data stolen in Maze ransomware attack
Maze

2020-03-26 ⋅ Telekom ⋅ Thomas Barabosch
TA505's Box of Chocolate - On Hidden Gems packed with the TA505 Packer
Amadey Azorult Clop FlawedGrace Get2 SDBbot Silence TinyMet TA505

2020-03-26 ⋅ Kaspersky Labs ⋅ Alexey Firsh, Brian Bartholomew, Kurt Baumgartner
iOS exploit chain deploys LightSpy feature-rich malware
dmsSpy lightSpy TwoSail Junk

2020-03-25 ⋅ FireEye ⋅ Christopher Glyer, Dan Perez, Sarah Jones, Steve Miller
This Is Not a Test: APT41 Initiates Global Intrusion Campaign Using Multiple Exploits
Speculoos Cobalt Strike

2020-03-25 ⋅ FBI ⋅ FBI
FBI Flash CP-000111-MW: Kwampirs Malware Indicators of Compromise Employed in Ongoing Cyber Supply Chain Campaign Targeting Global Industries
Kwampirs

2020-03-25 ⋅ Bitdefender ⋅ Liviu Arsene
New Router DNS Hijacking Attacks Abuse Bitbucket to Host Infostealer
Oski Stealer