Malpedia Library

Click here to download all references as Bib-File.•

2021-07-26 ⋅ The Wire ⋅ Kabir Agarwal, Sangeeta Barooah Pisharoty
From Army and BSF to RAW, Spyware Threat Touched National Security Field Too
Chrysaor

2021-07-26 ⋅ malwareunicorn ⋅ Malware Unicorn
Portable Executable Injection Study

2021-07-26 ⋅ vmware ⋅ Pavankumar Chaudhari, Quentin Fois
Hunting IcedID and unpacking automation with Qiling
IcedID

2021-07-26 ⋅ SentinelOne ⋅ Phil Stokes
Detecting XLoader | A macOS ‘Malware-as-a-Service’ Info Stealer and Keylogger
Xloader

2021-07-25 ⋅ Medium svch0st ⋅ svch0st
Guide to Named Pipes and Hunting for Cobalt Strike Pipes
Cobalt Strike

2021-07-25 ⋅ Youtube (AhmedS Kasmani) ⋅ AhmedS Kasmani
Analysis of Malware from Kaseya/Revil Supply Chain attack.
REvil

2021-07-25 ⋅ Max Kersten's Blog ⋅ Max Kersten
Ghidra script to decrypt a string array in XOR DDoS
XOR DDoS

2021-07-25 ⋅ Arkadiy Tetelman A Security Blog ⋅ Arkadiy Tetelman
Scanning your iPhone for Pegasus, NSO Group's malware
Chrysaor

2021-07-24 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Security Intelligence
Tweet on attackers increasingly using HTML smuggling in phishing and other email campaigns to deliver Casbaneiro
Metamorfo

2021-07-24 ⋅ 0ffset Blog ⋅ Daniel Bunce
Quack Quack: Analysing Qakbot’s Browser Hooking Module – Part 1
QakBot

2021-07-24 ⋅ InfoSec Handlers Diary Blog ⋅ Xavier Mertens
Agent.Tesla Dropped via a .daa Image and Talking to Telegram
Agent Tesla

2021-07-23 ⋅ Github (Lastline-Inc) ⋅ Pavankumar Chaudhari, Quentin Fois
YARA rules, IOCs and Scripts for extracting IcedID C2s
IcedID

2021-07-23 ⋅ Malwarebytes ⋅ hasherezade
AvosLocker enters the ransomware scene, asks for partners
AvosLocker

2021-07-22 ⋅ cyble ⋅ Cyble
DoNot APT Group Delivers A Spyware Variant Of Chat App
VICEROY TIGER

2021-07-22 ⋅ Expel ⋅ Evan Reichard, Kyle Pellett, Ryan Gott, Tyler Fornes
Incident report: Spotting SocGholish WordPress injection
FAKEUPDATES

2021-07-22 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure
Lemon Duck

2021-07-22 ⋅ ⋅ Trend Micro ⋅ Katsuyuki Okamoto
Analysis of "[Urgent] Damage report regarding the occurrence of cyber attacks, etc. associated with the Tokyo Olympics.exe"
VIGILANT CLEANER

2021-07-22 ⋅ The Record ⋅ Catalin Cimpanu
Wiper malware targeting Japanese PCs discovered ahead of Tokyo Olympics opening
VIGILANT CLEANER

2021-07-22 ⋅ Twitter (@HackSysTeam) ⋅ HackSys Team
Tweet on analysis of Pegasus
Chrysaor

2021-07-22 ⋅ Sophos ⋅ Andrew Brandt, Sean Gallagher
Malware increasingly targets Discord for abuse