Malpedia Library

Click here to download all references as Bib-File.•

2021-07-14 ⋅ ⋅ Guardia Civil ⋅ Guardia Civil
The Civil Guard dismantles an important network dedicated to committing scams through the Internet
Grandoreiro Mekotio

2021-07-14 ⋅ The Record ⋅ Catalin Cimpanu
Spain arrests 16 for working with the Mekotio and Grandoreiro malware gangs
Grandoreiro Mekotio

2021-07-14 ⋅ MDSec ⋅ Chris Basnett
Investigating a Suspicious Service
Cobalt Strike

2021-07-14 ⋅ Medium s2wlab ⋅ Jaeki Kim
Matryoshka : Variant of ROKRAT, APT37 (Scarcruft)
RokRAT

2021-07-14 ⋅ ⋅ Microstep Online Research Response Center ⋅ Microstep Online Research Response Center
Old trees and new flowers: Analysis of the new version of KGH spy components used by Kimsuky
KGH_SPY

2021-07-14 ⋅ Cado Security ⋅ Christopher Doman
Triage analysis of Serv-U FTP user backdoor deployed by CVE-2021-35211 (DEV-0322)

2021-07-14 ⋅ Kaspersky ⋅ Aseel Kayal, Mark Lechtik, Paul Rascagnères
LuminousMoth APT: Sweeping attacks for the chosen few
Cobalt Strike

2021-07-14 ⋅ Advanced Intelligence ⋅ AdvIntel Security & Development Team, Yelisey Boguslavskiy
REvil Vanishes From Underground - Infrastructure Down
REvil

2021-07-14 ⋅ Telekom ⋅ Nils Stünkel
LOCKDATA Auction – Another leak marketplace showing the recent shift of ransomware operators
Cryakl

2021-07-13 ⋅ Medium CyCraft ⋅ CyCraft Technology Corp
Prometheus Ransomware Decryptor
Prometheus

2021-07-13 ⋅ YouTube (John Hammond) ⋅ John Hammond
JScript Deobfuscation - More WSHRAT (Malware Analysis)
Houdini

2021-07-13 ⋅ zimperium ⋅ Richard Melick
Joker Is Still No Laughing Matter
Joker

2021-07-13 ⋅ YouTube ( Matt Soseman) ⋅ Matt Soseman
Solarwinds and SUNBURST attacks compromised my lab!
Cobalt Strike Raindrop SUNBURST TEARDROP

2021-07-13 ⋅ ⋅ amnpardaz ⋅ amnpardaz
Trojan.Win32.BreakWin

2021-07-13 ⋅ Symantec ⋅ Threat Hunter Team
Attacks Against the Government Sector
Raindrop TEARDROP

2021-07-13 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
Microsoft discovers threat actor (DEV-0322) targeting SolarWinds Serv-U software with 0-day exploit

2021-07-13 ⋅ Threat Post ⋅ Becky Bracken
Guess Fashion Brand Deals With Data Loss After Ransomware Attack
DarkSide

2021-07-13 ⋅ Threat Post ⋅ Lisa Vaas
Ransomware Giant REvil’s Sites Disappear
REvil REvil

2021-07-13 ⋅ Bleeping Computer ⋅ Lawrence Abrams
REvil ransomware gang's web sites mysteriously shut down
REvil

2021-07-13 ⋅ Cado Security ⋅ Christopher Doman
Resources for Investigating Cloud and Container Penetration Testing Tools