Malpedia Library

Click here to download all references as Bib-File.•

2020-02-02 ⋅ Sophos Labs ⋅ Markel Picado, Sean Gallagher
Agent Tesla amps up information stealing attacks
Agent Tesla

2020-02-02 ⋅ 360 netlab ⋅ Alex.Turing, Hui Wang, Liu Yang
New Threat: Matryosh Botnet Is Spreading
Matryosh

2020-02-02 ⋅ Nullteilerfrei Blog ⋅ Lars Wallenborn
Defeating Sodinokibi/REvil String-Obfuscation in Ghidra
REvil

2020-02-02 ⋅ uf0 Blog ⋅ Matteo Malvica
Uncovering Mimikatz ‘msv’ and collecting credentials through PyKD
MimiKatz

2020-02-01 ⋅ ThreatFabric ⋅ ThreatFabric
2020 - Year of the RAT
Anubis Cerberus Ginp Gustuff Hydra

2020-01-31 ⋅ YouTube (Context Information Security) ⋅ Contextis
New AVIVORE threat group – how they operate and managing the risk
PlugX

2020-01-31 ⋅ ReversingLabs ⋅ Robert Simmons
RATs in the Library: Remote Access Trojans Hide in Plain "Public" Site
CyberGate LimeRAT NjRAT Quasar RAT Revenge RAT

2020-01-31 ⋅ Virus Bulletin ⋅ Michal Poslušný, Peter Kálnai
Rich Headers: leveraging this mysterious artifact of the PE format
Dridex Exaramel Industroyer Neutrino RCS Sathurbot

2020-01-31 ⋅ ESET Research ⋅ Mathieu Tartare
Winnti Group targeting universities in Hong Kong
ShadowPad Winnti

2020-01-30 ⋅ Digital Shadows ⋅ Photon Research Team
Competitions on Russian-language cybercriminal forums: Sharing expertise or threat actor showboating?
REvil

2020-01-30 ⋅ Intezer ⋅ Michael Kajiloti, Paul Litvak
New Iranian Campaign Tailored to US Companies Utilizes an Updated Toolset
TONEDEAF VALUEVAULT

2020-01-30 ⋅ ⋅ ZATAZ ⋅ Damien Bancal
Cyber attaque à l’encontre des serveurs de Bouygues Construction
Maze

2020-01-29 ⋅ ZDNet ⋅ Catalin Cimpanu
DOD contractor suffers ransomware infection
Ryuk

2020-01-29 ⋅ ANSSI ⋅ ANSSI
État de la menace rançongiciel
Clop Dharma FriedEx Gandcrab LockerGoga Maze MegaCortex REvil RobinHood Ryuk SamSam

2020-01-28 ⋅ ⋅ Macnica Networks ⋅ Macnica Networks
Tick Group Aiming at Japanese Manufacturing
Datper xxmm

2020-01-28 ⋅ CitizenLab ⋅ Bill Marczak, John Scott-Railton, Masashi Crete-Nishihata, Ron Deibert, Siena Anstis
Stopping the Press: New York Times Journalist Targeted by Saudi-linked Pegasus Spyware Operator
Chrysaor

2020-01-27 ⋅ Reuters ⋅ Christopher Bing, Jack Stubbs, Joseph Menn
Exclusive: Hackers acting in Turkey's interests believed to be behind recent cyberattacks - sources
Sea Turtle

2020-01-27 ⋅ Palo Alto Networks Unit 42 ⋅ Brittany Barbehenn, Robert Falcone
xHunt Campaign: New Watering Hole Identified for Credential Harvesting

2020-01-27 ⋅ QuoScient ⋅ QuoScient
The Chicken Keeps Laying New Eggs: Uncovering New GC MaaS Tools Used By Top-tier Threat Actors
TerraRecon TerraStealer TerraTV VenomLNK

2020-01-27 ⋅ Group-IB ⋅ Vesta Matveeva
Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world