Malpedia Library

Click here to download all references as Bib-File.•

2017-11-19 ⋅ Arab News ⋅ ELISE KNUTSEN
Iranian agents blackmailed BBC reporter with ‘naked photo’ threats
Charming Kitten

2017-11-16 ⋅ Github (mdsecactivebreach) ⋅ Vincent Yiu
CACTUSTORCH: Payload Generation for Adversary Simulations
CACTUSTORCH

2017-11-14 ⋅ Palo Alto Networks Unit 42 ⋅ Tom Lancaster
Muddying the Water: Targeted Attacks in the Middle East
POWERSTATS MuddyWater

2017-11-14 ⋅ Department of Homeland Security ⋅ Department of Homeland Security
HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL
Lazarus Group

2017-11-13 ⋅ Obscurity Labs ⋅ Obscurity Labs
Match Made In The Shadows: Part [3]
PeddleCheap

2017-11-12 ⋅ MalwareBreakdown
Seamless Campaign Delivers Ramnit via RIG EK at 188.225.82.158. Follow-up Malware is AZORult Stealer.
Azorult

2017-11-09 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
Ordinypt Ransomware Intentionally Destroys Files, Currently Targeting Germany
Ordinypt

2017-11-08 ⋅ Reaqta ⋅ Reaqta
A short journey into DarkVNC attack chain
DarkVNC

2017-11-08 ⋅ Palo Alto Networks Unit 42 ⋅ Robert Falcone
OilRig Deploys “ALMA Communicator” – DNS Tunneling Trojan
Alma Communicator

2017-11-08 ⋅ SecurityIntelligence ⋅ Gadi Ostrovsky, Limor Kessem
Overlay RAT Malware Uses AutoIt Scripting to Bypass Antivirus Detection
Overlay RAT

2017-11-07 ⋅ ThreatVector ⋅ Cylance Threat Research Team
Locky Ransomware
Locky

2017-11-06 ⋅ Microsoft ⋅ Microsoft Defender ATP Research Team
Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks
Emotet QakBot

2017-11-06 ⋅ Microsoft ⋅ Microsoft Defender ATP Research Team
Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks
Emotet

2017-11-02 ⋅ Anomali ⋅ Anomali
Country Profile: Russian Federation
Zeus

2017-11-02 ⋅ RiskIQ ⋅ Yonathan Klijnsma
New Insights into Energetic Bear’s Watering Hole Cyber Attacks on Turkish Critical Infrastructure
ENERGETIC BEAR

2017-11-01 ⋅ Virus Bulletin ⋅ Patrick Wardle
Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server
FruitFly

2017-11-01 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
CryptoShuffler Stole $150,000 by Replacing Bitcoin Wallet IDs in PC Clipboards
CryptoShuffler

2017-11-01 ⋅ Kaspersky Labs ⋅ GReAT
Silence – a new Trojan attacking financial organizations
Silence Silence group

2017-10-31 ⋅ Bleeping Computer ⋅ Lawrence Abrams
ONI Ransomware Used in Month-Long Attacks Against Japanese Companies
Oni

2017-10-30 ⋅ Kaspersky Labs ⋅ Ghareeb Saad, Mohamad Amin Hasbini
Gaza Cybergang – updated activity in 2017:
Molerats