Malpedia Library

Click here to download all references as Bib-File.•

2021-08-17 ⋅ IBM X-Force Exchange ⋅ Charlotte Hammond, Chris Caridi
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Diavol

2021-08-17 ⋅ Amged Wagih
LockBit Ransomware - Technical Anlysis
LockBit

2021-08-16 ⋅ Malcat ⋅ malcat team
Statically unpacking a simple .NET dropper
Loki Password Stealer (PWS)

2021-08-16 ⋅ cyble ⋅ Cyble
A Deep-dive Analysis of LOCKBIT 2.0
LockBit

2021-08-16 ⋅ Trend Micro ⋅ Byron Gelera, Cris Tomboc, Jayson Chong, Jett Paulo Bernardo, Mark Marti, Nikki Madayag, Sean Torre
LockBit Resurfaces With Version 2.0 Ransomware Detections in Chile, Italy, Taiwan, UK
LockBit

2021-08-15 ⋅ Symantec ⋅ Threat Hunter Team
The Ransomware Threat
Babuk BlackMatter DarkSide Avaddon Babuk BADHATCH BazarBackdoor BlackMatter Clop Cobalt Strike Conti DarkSide DoppelPaymer Egregor Emotet FiveHands FriedEx Hades IcedID LockBit Maze MegaCortex MimiKatz QakBot RagnarLocker REvil Ryuk TrickBot WastedLocker

2021-08-14 ⋅ Check Point Research ⋅ Checkpoint Research
Indra — Hackers Behind Recent Attacks on Iran
Meteor Predatory Sparrow

2021-08-13 ⋅ LIFARS ⋅ Vlad Pasca
Makop Ransomware
Makop Ransomware

2021-08-13 ⋅ vsquare ⋅ Anna Gielewska, Julia Dauksza
The Ghostwriter Scenario (UNC1151)

2021-08-12 ⋅ Sentinel LABS ⋅ SentinelLabs
ShadowPad: A Masterpiece of Privately Sold Malware in Chinese Espionage
ShadowPad Earth Lusca

2021-08-12 ⋅ Netskope ⋅ Gustavo Palazolo
Netskope Threat Coverage: LockBit
LockBit

2021-08-12 ⋅ Sophos ⋅ Andrew Brandt, Gabor Szappanos
Gootloader’s “mothership” controls malicious content
GootLoader

2021-08-12 ⋅ imp0rtp3 blog ⋅ imp0rtp3
Uncovering Tetris – a Full Surveillance Kit Running in your Browser
Jeniva Jetriz Swid

2021-08-12 ⋅ Cisco Talos ⋅ Vanja Svajcer
Signed MSI files, Raccoon and Amadey are used for installing ServHelper RAT
Amadey Raccoon ServHelper

2021-08-12 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Threat Thursday: Ficker Infostealer Malware
Ficker Stealer

2021-08-12 ⋅ Twitter (@r3c0nst) ⋅ Frank Boldewin
Tweet on StealBit malware as used by LockBit 2.0
StealBit

2021-08-12 ⋅ The Record ⋅ Catalin Cimpanu
PrintNightmare vulnerability weaponized by Magniber ransomware gang
Magniber

2021-08-12 ⋅ Arnaud Zobec, Edmund Brumaghin, Joe Marshall
Vice Society Leverages PrintNightmare In Ransomware Attacks

2021-08-12 ⋅ The Record ⋅ Catalin Cimpanu
SynAck ransomware gang releases decryption keys for old victims
SynAck

2021-08-11 ⋅ Team Cymru ⋅ Josh Hopkins
MoqHao Part 1.5: High-Level Trends of Recent Campaigns Targeting Japan
MoqHao