Malpedia Library

Click here to download all references as Bib-File.•

2021-08-17 ⋅ ClearSky ⋅ ClearSky Research Team
New Iranian Espionage Campaign By “Siamesekitten” – Lyceum
LYCEUM

2021-08-17 ⋅ Recorded Future ⋅ Insikt Group®
Operation Secondary Infektion Continues Targeting Democratic Institutions and Regional Geopolitics

2021-08-17 ⋅ Medium michaelkoczwara ⋅ Michael Koczwara
Cobalt Strike Hunting — DLL Hijacking/Attack Analysis
Cobalt Strike

2021-08-17 ⋅ Sekoia ⋅ sekoia
An insider insights into Conti operations – Part one
Cobalt Strike Conti

2021-08-17 ⋅ Advanced Intelligence ⋅ Vitali Kremez, Yelisey Boguslavskiy
Hunting for Corporate Insurance Policies: Indicators of [Ransom] Exfiltration
Cobalt Strike Conti

2021-08-17 ⋅ ClearSky ⋅ ClearSky
New Iranian Espionage Campaign By “Siamesekitten” - Lyceum
danbot Milan Shark

2021-08-17 ⋅ Seguranca Informatica ⋅ Pedro Tavares
Secrets behind the Lazarus’s VHD ransomware
VHD Ransomware

2021-08-17 ⋅ Trend Micro ⋅ Daniel Lunghi
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military
Chrysaor Confucius

2021-08-17 ⋅ Huntress Labs ⋅ Matthew Brennan
Snakes on a Domain: An Analysis of a Python Malware Loader

2021-08-17 ⋅ Volatility Labs ⋅ Damien Cash, Josh Grunzweig, Matthew Meltzer, Steven Adair, Thomas Lancaster
North Korean APT37 / InkySquid Infects Victims Using Browser Exploits
BLUELIGHT APT37

2021-08-17 ⋅ Netcraft ⋅ Sean Gebbett
Resurgent FluBot malware targets German and Polish banks
FluBot

2021-08-17 ⋅ IBM X-Force Exchange ⋅ Charlotte Hammond, Chris Caridi
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Diavol

2021-08-17 ⋅ Amged Wagih
LockBit Ransomware - Technical Anlysis
LockBit

2021-08-16 ⋅ Malcat ⋅ malcat team
Statically unpacking a simple .NET dropper
Loki Password Stealer (PWS)

2021-08-16 ⋅ cyble ⋅ Cyble
A Deep-dive Analysis of LOCKBIT 2.0
LockBit

2021-08-16 ⋅ Trend Micro ⋅ Byron Gelera, Cris Tomboc, Jayson Chong, Jett Paulo Bernardo, Mark Marti, Nikki Madayag, Sean Torre
LockBit Resurfaces With Version 2.0 Ransomware Detections in Chile, Italy, Taiwan, UK
LockBit

2021-08-15 ⋅ Symantec ⋅ Threat Hunter Team
The Ransomware Threat
Babuk BlackMatter DarkSide Avaddon Babuk BADHATCH BazarBackdoor BlackMatter Clop Cobalt Strike Conti DarkSide DoppelPaymer Egregor Emotet FiveHands FriedEx Hades IcedID LockBit Maze MegaCortex MimiKatz QakBot RagnarLocker REvil Ryuk TrickBot WastedLocker

2021-08-14 ⋅ Check Point Research ⋅ Checkpoint Research
Indra — Hackers Behind Recent Attacks on Iran
Meteor Predatory Sparrow

2021-08-13 ⋅ vsquare ⋅ Anna Gielewska, Julia Dauksza
The Ghostwriter Scenario (UNC1151)

2021-08-12 ⋅ Sentinel LABS ⋅ SentinelLabs
ShadowPad: A Masterpiece of Privately Sold Malware in Chinese Espionage
ShadowPad Earth Lusca