Malpedia Library

2021-06-30 ⋅ Sophos ⋅ Tilly Travers
MTR in Real Time: Hand-to-hand combat with REvil ransomware chasing a $2.5 million pay day
REvil

2021-06-30 ⋅ Advanced Intelligence ⋅ AdvIntel Security & Development Team, Brandon Rudisel, Yelisey Boguslavskiy
Ransomware-&-CVE: Industry Insights Into Exclusive High-Value Target Adversarial Datasets
BlackKingdom Ransomware Clop dearcry Hades REvil

2021-06-29 ⋅ Yoroi ⋅ Yoroi
The "WayBack” Campaign: a Large Scale Operation Hiding in Plain Sight

2021-06-29 ⋅ Twitter (@IntezerLabs) ⋅ Intezer
Tweet on unknown elf backdoor based on an open source remote shell named "amcsh"
BioSet

2021-06-29 ⋅ Medium hidocohen ⋅ Hido Cohen
GuLoader’s Anti-Analysis Techniques
CloudEyE

2021-06-29 ⋅ Facebook ⋅ Jessica Romero
Combating E-Commerce Scams and Account Takeover Attacks

2021-06-29 ⋅ Netskope ⋅ Ghanashyam Satpathy, Jenko Hwong
Not Laughing: Malicious Office Documents using LoLBins

2021-06-29 ⋅ Medium MITRE-Engenuity ⋅ Jon Baker, Nicholas Amon
Security Control Mappings: A Starting Point for Threat-Informed Defense

2021-06-29 ⋅ Twitter (@sisoma2) ⋅ sisoma2
Tweet on vidar stealer using Tumblr to obtain dynamic config
Vidar

2021-06-29 ⋅ Accenture ⋅ Accenture Security
HADES ransomware operators continue attacks
Cobalt Strike Hades MimiKatz

2021-06-29 ⋅ The Record ⋅ Catalin Cimpanu
Free decrypter available for Lorenz ransomware
Lorenz

2021-06-29 ⋅ Silverado Policy Accelerator ⋅ Anne Neuberger, Dmitri Alperovitch
Cyber Strategy in the Biden Era: A Conversation with Anne Neuberger

2021-06-29 ⋅ ⋅ VERSION2 ⋅ Mads Lorenzen
Danmarks National Bank hacked as part of 'the world's most sophisticated hacker attack' (NOBELIUM)

2021-06-29 ⋅ YouTube (C. Beek) ⋅ Christiaan Beek
Demo of REvil/Sodinokibi Linux variant encrypting a Linux system
REvil

2021-06-29 ⋅ Twitter (@VK_intel) ⋅ Vitali Kremez
Tweet on Linux version of REvil ransomware
REvil

2021-06-29 ⋅ Proofpoint ⋅ Daniel Blackford, Selena Larson
Cobalt Strike: Favorite Tool from APT to Crimeware
Cobalt Strike

2021-06-29 ⋅ Yoroi ⋅ Luca Mella, Luigi Martire
The "WayBack” Campaign: a Large Scale Operation Hiding in Plain Sight
Agent Tesla Cobian RAT Oski Stealer

2021-06-28 ⋅ AhnLab ⋅ AhnLab
CryptBot Info-stealer Malware Being Distributed in Different Forms
CryptBot

2021-06-28 ⋅ ⋅ CN CERT ⋅ CNCERT
Analysis of the new P2P botnet PBot
pbot

2021-06-28 ⋅ Github (Finch4) ⋅ Finch
Delta Ransomware Analysis