Malpedia Library

Click here to download all references as Bib-File.•

2021-01-25 ⋅ SOC Prime ⋅ Emanuele De Lucia
Affiliates vs Hunters: Fighting the DarkSide
DarkSide

2021-01-25 ⋅ Twitter (@IntelAdvanced) ⋅ Advanced Intelligence
Tweet on Ryuk Ransomware group's post exploitation tactics including usage of Keethief tool
Ryuk

2021-01-25 ⋅ Netresec ⋅ Erik Hjelmvik
Twenty-three SUNBURST Targets Identified
SUNBURST

2021-01-24 ⋅ malwareandstuff blog ⋅ Andreas Klopsch
Catching Debuggers with Section Hashing

2021-01-24 ⋅ evotec ⋅ Przemyslaw Klys
The only command you will ever need to understand and fix your Group Policies (GPO)

2021-01-24 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Another ransomware (Avaddon) now uses DDoS attacks to force victims to pay
Avaddon

2021-01-23 ⋅ Youtube (MalwareAnalysisForHedgehogs) ⋅ Karsten Hahn
Malware Analysis - Fileless GooLoad static analysis and unpacking

2021-01-22 ⋅ Quick Heal ⋅ Digvijay Mane
Stay Alert, Joker still making its way on Google Play Store!
Joker

2021-01-22 ⋅ Twitter (@bryceabdo) ⋅ Bryce
Tweet on GRIMAGENT malware used by UNC1878 during some #RYUK intrusions in 2020
GRIMAGENT

2021-01-22 ⋅ Trimarc Security ⋅ Scott W Blake
LDAP Channel Binding and Signing

2021-01-22 ⋅ InfoSec Handlers Diary Blog ⋅ Xavier Mertens
Another File Extension to Block in your MTA: .jnlp

2021-01-22 ⋅ DomainTools ⋅ Joe Slowik
Change in Perspective on the Utility of SUNBURST-related Network Indicators
SUNBURST

2021-01-22 ⋅ Symantec ⋅ Threat Hunter Team
SolarWinds: How Sunburst Sends Data Back to the Attackers
SUNBURST

2021-01-21 ⋅ NetbyteSEC ⋅ Fareed Fauzi
Solarwinds Attack: Sunburst's DLL Technical Analysis
SUNBURST

2021-01-21 ⋅ DENEXUS ⋅ Markel Picado
Spear Phishing Targeting ICS Supply Chain - Analysis
Agent Tesla

2021-01-21 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Disclosure of Manling Flower Organization (APT-C-08) using Warzone RAT attack
Ave Maria

2021-01-21 ⋅ Sophos Labs ⋅ Andrew Brandt, Gabor Szappanos
MrbMiner: Cryptojacking to bypass international sanctions

2021-01-21 ⋅ ESET Research ⋅ ESET Research
Vadokrist: A wolf in sheep’s clothing
Vadokrist

2021-01-20 ⋅ Team Cymru ⋅ Andy Kraus
MoqHao Part 1: Identifying Phishing Infrastructure
MoqHao

2021-01-20 ⋅ Trend Micro ⋅ Abraham Camba, Gilbert Sison, Ryan Maglaque
XDR investigation uncovers PlugX, unique technique in APT attack
PlugX