Malpedia Library

Click here to download all references as Bib-File.•

2021-07-03 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
US chemical distributor shares info on DarkSide ransomware data theft
DarkSide

2021-07-03 ⋅ Kaseya ⋅ Kaseya
Kaseya VSA Detection Tool
REvil

2021-07-03 ⋅ VinCSS ⋅ Dang Dinh Phuong, Trương Quốc Ngân
[RE023] Quick analysis and removal tool of a series of new malware variant of Panda group that has recently targeted to Vietnam VGCA

2021-07-02 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
Rewterz Threat Intel – IndigoZebra APT Group Targeting Central Asia – Active IOCs
IndigoZebra

2021-07-02 ⋅ Cisco ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal
AllaKore CetaRAT Lilith NjRAT ReverseRAT

2021-07-02 ⋅ Binary Defense ⋅ Garrett Thompson
New Ransomware “Diavol” Being Dropped by Trickbot
Diavol

2021-07-02 ⋅ Bleeping Computer ⋅ Lawrence Abrams
REvil ransomware hits 1,000+ companies in MSP supply-chain attack
REvil

2021-07-02 ⋅ ⋅ Velzart ⋅ Niels den Hild
Ransomware attack
REvil

2021-07-02 ⋅ Huntress Labs ⋅ Huntress Labs
Crticial Ransomware Incident in Progress
REvil

2021-07-02 ⋅ Twitter (@VK_intel) ⋅ Vitali Kremez
Tweet on Revil ransomware analysis used in Kaseya attack
REvil

2021-07-02 ⋅ Github (fwosar) ⋅ Fabian Wosar
REvil configuration dump used in Kaseya attack
REvil

2021-07-02 ⋅ Twitter (@SyscallE) ⋅ SeAccessCheck
Tweet on Revil dropper used in Kaseya attack
REvil

2021-07-02 ⋅ ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Dissemination of malicious word documents for 'Korean Political Science and Diplomacy' and 'Biography of Policy Advisor' (kimsuky)

2021-07-02 ⋅ Team Cymru ⋅ Joshua Picolet
Transparent Tribe APT Infrastructure Mapping Part 2: A Deeper Dive into the Identification of CrimsonRAT Infrastructure
Crimson RAT

2021-07-02 ⋅ MalwareBookReports ⋅ muzi
Skip the Middleman: Dridex Document to Cobalt Strike
Cobalt Strike Dridex

2021-07-02 ⋅ Group-IB ⋅ Group-IB
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT

2021-07-02 ⋅ Anchored Narratives on Threat Intelligence and Geopolitics ⋅ RJM
Geopolitical nation-state threat actor overview June 2021

2021-07-02 ⋅ The Record ⋅ Catalin Cimpanu
REvil ransomware gang executes supply chain attack via malicious Kaseya update
REvil

2021-07-02 ⋅ The Record ⋅ Catalin Cimpanu
TrickBot: New attacks see the botnet deploy new banking module, new ransomware
TrickBot

2021-07-02 ⋅ Group-IB ⋅ Albert Priego
The Brothers Grim - The reversing tale of GrimAgent malware used by Ryuk
GRIMAGENT