Malpedia Library

Click here to download all references as Bib-File.•

2021-08-03 ⋅ Twitter (@sysopfb) ⋅ Jason Reaves
Tweet on python script to decode the blob from Blackmatter ransomware
DarkSide

2021-08-03 ⋅ Twitter (@ValthekOn) ⋅ Valthek
Tweet on blacklisted extensions & names of BlackMatter ransomware making the check against custom hashes values
DarkSide

2021-08-03 ⋅ Twitter (@sisoma2) ⋅ sisoma2
Python script for recovering the hashes hardcoded in different samples of the BlackMatter ransomware
DarkSide

2021-08-03 ⋅ nex.sx ⋅ Claudio Guarnieri
The Pegasus Project
Chrysaor

2021-08-03 ⋅ Cyber Geeks ⋅ CyberMasterV
A step-by-step analysis of the new malware used by APT28/Sofacy called SkinnyBoy
SkinnyBoy

2021-08-03 ⋅ Group-IB ⋅ Anastasia Tikhonova, Dmitry Kupin
The Art of Cyberwarfare Chinese APTs attack Russia
Albaniiutas Mail-O SManager TA428

2021-08-02 ⋅ Youtube (Forschungsinstitut Cyber Defense) ⋅ Alexander Rausch, Konstantin Klinger
The CODE 2021: Workshop presentation and demonstration about CobaltStrike
Cobalt Strike

2021-08-02 ⋅ Cybleinc ⋅ cybleinc
A Deep-Dive Analysis Of A New Wiper Malware Disguised As Tokyo Olympics Document
VIGILANT CLEANER

2021-08-02 ⋅ The Record ⋅ Dmitry Smilyanets
An interview with BlackMatter: A new ransomware group that’s learning from the mistakes of DarkSide and REvil
DarkSide LockBit REvil

2021-08-02 ⋅ ⋅ 360 Threat Intelligence Center ⋅ Advanced Threat Institute
Operation Hunting - The latest attack by the CNC (APT-C-48) has been revealed

2021-08-02 ⋅ KELA ⋅ Victoria Kivilevich
All Access Pass: Five Trends with Initial Access Brokers

2021-08-02 ⋅ AT&T ⋅ Javier Ruiz, Ofer Caspi
New sophisticated RAT in town: FatalRat analysis
FatalRat

2021-08-01 ⋅ The Record ⋅ Catalin Cimpanu
Decryptor released for Prometheus ransomware victims
Prometheus

2021-08-01 ⋅ The DFIR Report ⋅ The DFIR Report
BazarCall to Conti Ransomware via Trickbot and Cobalt Strike
BazarBackdoor Cobalt Strike Conti TrickBot

2021-08-01 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
BlackMatter Ransomware
DarkSide

2021-07-31 ⋅ Bleeping Computer ⋅ Lawrence Abrams
DarkSide ransomware gang returns as new BlackMatter operation
DarkSide

2021-07-31 ⋅ Youtube (OALabs) ⋅ Sergei Frankoff
Python3 Tips For Reverse Engineers

2021-07-31 ⋅ Bleeping Computer ⋅ Lawrence Abrams
BlackMatter ransomware gang rises from the ashes of DarkSide, REvil
DarkSide REvil

2021-07-30 ⋅ Threatpost ⋅ Elizabeth Montalbano
Novel Meteor Wiper Used in Attack that Crippled Iranian Train System
Meteor

2021-07-30 ⋅ cyble ⋅ cybleinc
Aberebot on the Rise: New Banking Trojan Targeting Users Through Phishing
Aberebot