Malpedia Library

Click here to download all references as Bib-File.•

2021-10-08 ⋅ Zscaler ⋅ Lenart Brave, Tarun Dewan
New Trickbot and BazarLoader campaigns use multiple delivery vectorsi
BazarBackdoor TrickBot

2021-10-07 ⋅ Aragorn Tseng, Charles Li, Peter Syu, Tom Lai
Evolution after prosecution : Psychedelic APT41
Dizzyvoid

2021-10-07 ⋅ Virus Bulletin ⋅ Byeongjae Kim, Dongwook Kim, Taewoo Lee
Operation Bookcodes – targeting South Korea
BookCodes RAT LPEClient

2021-10-07 ⋅ VB Localhost ⋅ Adam Prescott, Sveva Vittoria Scenarelli
Back to Black(Tech): an analysis of recent BlackTech operations and an open directory full of exploits
Flagpro

2021-10-07 ⋅ Microsoft ⋅ Tom Burt
Russian cyberattacks pose greater risk to governments and other insights from our annual report

2021-10-07 ⋅ Mandiant ⋅ Mandiant Research Team
FIN12 Group Profile: FIN12 Priotizes Speed to Deploy Ransomware Aginst High-Value Targets
Cobalt Strike Empire Downloader TrickBot

2021-10-07 ⋅ Twitter (@billyleonard) ⋅ Billy Leonard, Google Threat Analysis Group
Tweet on IOCs related to APT28

2021-10-07 ⋅ Amnesty International ⋅ Amnesty International
Hackers-for-Hire in West Africa - Activist in Togo attacked with Indian-made Spyware
yty

2021-10-07 ⋅ Kaspersky ⋅ Aseel Kayal, Mark Lechtik, Paul Rascagnères
LYCEUM Reborn: Counterintelligence in the Middle East
danbot LYCEUM

2021-10-07 ⋅ S2W Inc. ⋅ Jaeki Kim, Kyoung-ju Kwak, Sojun Ryu
Operation Newton: Hi Kimsuky? Did an Apple(seed) really fall on Newton’s head?
Appleseed Kimsuky

2021-10-07 ⋅ The Record ⋅ Catalin Cimpanu
Netherlands can use intelligence or armed forces to respond to ransomware attacks

2021-10-07 ⋅ The Record ⋅ Catalin Cimpanu
Google notifies 14,000 Gmail users of targeted APT28 attacks

2021-10-07 ⋅ Netskope ⋅ Ghanashyam Satpathy, Gustavo Palazolo
SquirrelWaffle: New Malware Loader Delivering Cobalt Strike and QakBot
Cobalt Strike QakBot Squirrelwaffle

2021-10-07 ⋅ Uptycs ⋅ Siddharth Sharma
Team TNT Deploys Malicious Docker Image On Docker Hub
TeamTNT

2021-10-07 ⋅ ESET Research ⋅ Vladislav Hrčka
FontOnLake: Previously unknown malware family targeting Linux
FontOnLake

2021-10-07 ⋅ ANY.RUN ⋅ ANY.RUN
ANY.RUN report for activity of the downloader

2021-10-07 ⋅ Microsoft ⋅ Microsoft
Microsoft Digital Defense Report - October 2021
APT15 APT31 APT40 APT5 Earth Lusca HAFNIUM

2021-10-07 ⋅ Palo Alto Networks Unit 42 ⋅ Peter Renals
SilverTerrier – Nigerian Business Email Compromise

2021-10-07 ⋅ Kaspersky ⋅ Fedor Sinitsyn, Yanis Zinchenko
Ransomware in the CIS
Cryakl Dharma Hakbit Phobos Void

2021-10-07 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BluStealer Infostealer
BluStealer