Malpedia Library

Click here to download all references as Bib-File.•

2021-09-29 ⋅ The Record ⋅ Catalin Cimpanu
Turkish national charged for DDoS attacks with the WireX botnet
WireX

2021-09-29 ⋅ Telsy ⋅ Telsy Research Team
Google Drive abused in document exfiltration operation against Afghanistan

2021-09-29 ⋅ Proofpoint ⋅ Proofpoint Staff, Selena Larson
TA544 Targets Italian Organizations with Ursnif Malware
ISFB

2021-09-29 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Kamlapati Choubey, Peter Girnus, William Gamazo Sanchez
FormBook Adds Latest Office 365 0-Day Vulnerability (CVE-2021-40444) to Its Arsenal
Formbook

2021-09-28 ⋅ Netlab ⋅ Alex.Turing, Hui Wang, YANG XU
Mirai_ptea_Rimasuta variant is exploiting a new RUIJIE router 0 day to spread
Mirai

2021-09-28 ⋅ Flashpoint ⋅ Flashpoint
REvil’s “Cryptobackdoor” Con: Ransomware Group’s Tactics Roil Affiliates, Sparking a Fallout
REvil

2021-09-28 ⋅ Zscaler ⋅ Avinash Kumar, Brett Stone-Gross
Squirrelwaffle: New Loader Delivering Cobalt Strike
Cobalt Strike Squirrelwaffle

2021-09-28 ⋅ HolisticInfosec ⋅ Russ McRee
Zircolite vs Defense Evasion & Nobellium FoggyWeb

2021-09-28 ⋅ Lab52 ⋅ Th3spis
Winter Vivern – all Summer

2021-09-28 ⋅ Recorded Future ⋅ Insikt Group®
The Business of Fraud: Laundering Funds in the Criminal Underground

2021-09-28 ⋅ Recorded Future ⋅ Insikt Group®
4 Chinese APT Groups Identified Targeting Mail Server of Afghan Telecommunications Firm Roshan
PlugX Winnti

2021-09-28 ⋅ Kaspersky Labs ⋅ GReAT
FinSpy: unseen findings
FinFisher FinFisher FinFisher FinFisher RAT

2021-09-28 ⋅ Twitter (@wvuuuuuuuuuuuuu) ⋅ WVU
Tweet on ITW exploitation of CVE-2021-22005

2021-09-28 ⋅ Twitter (@Max_Mal_) ⋅ Max Malyutin
Tweet on how to debug SquirrelWaffle
Squirrelwaffle

2021-09-27 ⋅ Medium ryancor ⋅ Ryan Cornateanu
Deobfuscating PowerShell Malware Droppers
Agent.BTZ

2021-09-27 ⋅ Cyber-Anubis ⋅ Nidal Fikri
RedLine Infostealer | Detailed Reverse Engineering
RedLine Stealer

2021-09-27 ⋅ Youtube (OALabs) ⋅ Sergei Frankoff
Live Coding A Squirrelwaffle Malware Config Extractor
Squirrelwaffle

2021-09-27 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Gilbert Sison, Joelson Soares, Ryan Maglaque, Warren Sto.Tomas
Fake Installers Drop Malware and Open Doors for Opportunistic Attackers
RedLine Stealer Socelars Vidar

2021-09-27 ⋅ Kaspersky ⋅ Dmitry Galov, Leonid Bezvershenko, Marc Rivero López
BloodyStealer and gaming assets for sale
BloodyStealer

2021-09-27 ⋅ Security Soup Blog ⋅ Ryan Campbell
DoppelDridex Delivered via Slack and Discord
DoppelDridex