Malpedia Library

2021-10-07 ⋅ Kaspersky ⋅ Fedor Sinitsyn, Yanis Zinchenko
Ransomware in the CIS
Cryakl Dharma Hakbit Phobos Void

2021-10-07 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BluStealer Infostealer
BluStealer

2021-10-07 ⋅ Mandiant ⋅ Adam Brunner, Genevieve Stark, Jennifer Brooks, Jeremy Kennelly, Joshua Shilko, Kimberly Goody, Zach Riddle
FIN12: The Prolific Ransomware Intrusion Threat Actor That Has Aggressively Pursued Healthcare Targets
BazarBackdoor GRIMAGENT Ryuk

2021-10-06 ⋅ Blackberry ⋅ Blackberry Research
Finding Beacons in the Dark
Cobalt Strike

2021-10-06 ⋅ Cybereason ⋅ Assaf Dahan, Chen Erlich, Daniel Frank, Tom Fakterman
Operation GhostShell: Novel RAT Targets Global Aerospace and Telecoms Firms
ShellClient RAT

2021-10-06 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Tweet on ERMAC android malware
ERMAC

2021-10-06 ⋅ Anomali ⋅ Tara Gould
Inside TeamTNT’s Impressive Arsenal: A Look Into A TeamTNT Server
TeamTNT

2021-10-06 ⋅ zimperium ⋅ Jordan Herman
Malware Distribution with Mana Tools
Agent Tesla Azorult

2021-10-06 ⋅ ESET Research ⋅ Martina López
To the moon and hack: Fake SafeMoon app drops malware to spy on you
Remcos

2021-10-05 ⋅ ESET Research ⋅ Anton Cherepanov, Martin Smolár
UEFI threats moving to the ESP: Introducing ESPecter bootkit
ESPecter

2021-10-05 ⋅ Trend Micro ⋅ Byron Gelera, Fyodor Yarochkin, Janus Agcaoili, Nikko Tamana
Ransomware as a Service: Enabler of Widespread Attacks
Cerber Conti DarkSide Gandcrab Locky Nefilim REvil Ryuk

2021-10-05 ⋅ FRSecure ⋅ Oscar Minks
The REBOL Yell: A New Novel REBOL Exploit
MirrorBlast

2021-10-05 ⋅ Seguranca Informatica ⋅ Pedro Tavares
Malware analysis: Details on LockBit ransomware
LockBit

2021-10-05 ⋅ Sophos ⋅ Andrew Brandt, Andrew O’Donnell, Mauricio Valdivieso, Rajesh Nataraj
Python ransomware script targets ESXi server for encryption

2021-10-05 ⋅ Medium s2wlab ⋅ S2W TALON
Prometheus x Spook: Prometheus ransomware rebranded Spook ransomware.
Prometheus

2021-10-05 ⋅ EXPMON ⋅ EXPMON's Blog
Regarding the Threats Posed by Encrypted Office Files

2021-10-05 ⋅ Recorded Future ⋅ Insikt Group®
Illegal Activities Endure on China's Dark Web Despite Strict Internet Control

2021-10-05 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Drawing a Dragon: Connecting the Dots to Find APT41
Cobalt Strike Ghost RAT

2021-10-04 ⋅ Github (OALabs) ⋅ OALabs
Reverse engineered the Hancitor DLL and built a static config extractor
Hancitor

2021-10-04 ⋅ Proofpoint ⋅ Adam McNeil, Andrew Conway, Felipe Naves
Mobile Malware: TangleBot Untangled
TangleBot