Malpedia Library

Click here to download all references as Bib-File.•

2021-09-17 ⋅ cyble ⋅ Cyble
Sophisticated Spyware Posing as a Banking Application To Target Korean Users
Unidentified APK 006

2021-09-17 ⋅ Avast ⋅ Martin Chlumecký
DirtyMoe: Code Signing Certificate
DirtyMoe

2021-09-17 ⋅ Malware Traffic Analysis ⋅ Brad Duncan
2021-09-17 - SQUIRRELWAFFLE Loader with Cobalt Strike
Cobalt Strike Squirrelwaffle

2021-09-17 ⋅ K7 Security ⋅ Baran S
Joker
Joker

2021-09-17 ⋅ ESET Research ⋅ ESET Research
Numando: Count once, code twice
Numando

2021-09-17 ⋅ Medium inteloperator ⋅ Intel Operator
The default: 63 6f 62 61 6c 74 strike
Cobalt Strike

2021-09-16 ⋅ PCrisk ⋅ Tomas Meskauskas
.harma (Ouroboros) ransomware from the operating system
Zeropadypt

2021-09-16 ⋅ Department Of Health And Social Services (DHSS) ⋅ Department Of Health And Social Services (DHSS)
Department of Health and Social Services 2021 Cyberattack: Frequently Asked Questions Updated Sept. 16, 2021

2021-09-16 ⋅ Lumen ⋅ Black Lotus Labs
No Longer Just Theory: Black Lotus Labs Uncovers Linux Executables Deployed as Stealth Windows Loaders
PrivetSanya Meterpreter

2021-09-16 ⋅ Group-IB ⋅ Ivan Lebedev, Reza Rafati
RUNLIR - phishing campaign targeting Netherlands

2021-09-16 ⋅ Twitter (@GossiTheDog) ⋅ Kevin Beaumont
Tweet on some unknown threat actor dropping Mgbot, custom IIS modular backdoor and cobalstrike using exploiting ProxyShell
Cobalt Strike MgBot

2021-09-16 ⋅ Akamai ⋅ Larry Cashdollar
Capoae Malware Ramps Up: Uses Multiple Vulnerabilities and Tactics to Spread
Capoae

2021-09-16 ⋅ Kaspersky ⋅ AMR
Exploitation of the CVE-2021-40444 vulnerability in MSHTML

2021-09-16 ⋅ Cisco ⋅ Tiago Pereira, Vitor Ventura
Operation Layover: How we tracked an attack on the aviation industry to five years of compromise
AsyncRAT Houdini NjRAT

2021-09-16 ⋅ Objective-See ⋅ Tom McGuire
Analysis of CVE-2021-30860 the flaw and fix of a zero-click vulnerability, exploited in the wild
Chrysaor

2021-09-16 ⋅ Medium Shabarkin ⋅ Pavel Shabarkin
Pointer: Hunting Cobalt Strike globally
Cobalt Strike

2021-09-16 ⋅ CISA ⋅ US-CERT
APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

2021-09-16 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: NetWire RAT is Coming Down the Line
NetWire RC

2021-09-16 ⋅ RiskIQ ⋅ RiskIQ
Untangling the Spider Web: The Curious Connection Between WIZARD SPIDER’s Ransomware Infrastructure and a Windows Zero-Day Exploit
Cobalt Strike Ryuk

2021-09-15 ⋅ Silent Push ⋅ Silent Push
Bad ASes