Malpedia Library

Click here to download all references as Bib-File.•

2022-02-23 ⋅ Twitter (@threatintel) ⋅ Symantec Threat Intelligence
Tweet on new wiper malware being used in attacks on Ukraine
HermeticWiper

2022-02-22 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
IcedID to Cobalt Strike In Under 20 Minutes
Cobalt Strike IcedID PhotoLoader

2022-02-22 ⋅ Sophos ⋅ Chester Wisniewski
Cyberthreats during Russian-Ukrainian tensions: what can we learn from history to be prepared?
Conti

2022-02-17 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
Threat Thursday: Arkei Infostealer Expands Reach Using SmokeLoader to Target Crypto Wallets and MFA
Arkei Stealer SmokeLoader

2022-02-17 ⋅ NCC Group ⋅ Michael Mullen, Richard Footman, Simon Biggs
Detecting Karakurt – an extortion focused threat actor

2022-02-17 ⋅ SentinelOne ⋅ Amitai Ben, Shushan Ehrlich
Log4j2 In The Wild | Iranian-Aligned Threat Actor “TunnelVision” Actively Exploiting VMware Horizon
APT35

2022-02-16 ⋅ CrowdStrike ⋅ CrowdStrike
Global Threat Report 2022
Sea Turtle

2022-02-16 ⋅ Threat Post ⋅ Elizabeth Montalbano
Emotet Now Spreading Through Malicious Excel Files
Emotet

2022-02-16 ⋅ Threat Post ⋅ Tara Seals
TrickBot Ravages Customers of Amazon, PayPal and Other Top Brands
TrickBot

2022-02-15 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
Increase in Emotet Activity and Cobalt Strike Deployment
Cobalt Strike Emotet

2022-02-15 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
ShadowPad Malware Analysis
ShadowPad

2022-02-15 ⋅ Threat Post ⋅ Elizabeth Montalbano
TA2541: APT Has Been Shooting RATs at Aviation for Years
AsyncRAT Houdini NetWire RC Parallax RAT

2022-02-11 ⋅ Cisco Talos ⋅ Talos
Threat Roundup for February 4 to February 11
DarkComet Ghost RAT Loki Password Stealer (PWS) Tinba Tofsee Zeus

2022-02-10 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: BHunt Scavenger Harvests Victims’ Crypto Wallets
BHunt

2022-02-10 ⋅ Cybereason ⋅ Cybereason Global SOC Team
Threat Analysis Report: All Paths Lead to Cobalt Strike - IcedID, Emotet and QBot
Cobalt Strike Emotet IcedID QakBot

2022-02-09 ⋅ ENEA ⋅ Cathal McDaid
HiddenArt – A Russian-linked SS7 Threat Actor
HiddenArt

2022-02-09 ⋅ CISA ⋅ Australian Cyber Security Centre (ACSC), CISA, FBI, NCSC UK, NSA
Alert (AA22-040A) 2021 Trends Show Increased Globalized Threat of Ransomware

2022-02-09 ⋅ Australian Cyber Security Centre (ACSC), CISA, FBI, NSA, United Kingdom’s National Cyber Security Centre (NCSC-UK)
2021 Trends Show Increased Globalized Threat of Ransomware

2022-02-09 ⋅ Cisco ⋅ Vanja Svajcer, Vitor Ventura
What’s with the shared VBA code between Transparent Tribe and other threat actors?

2022-02-09 ⋅ ESET Research ⋅ ESET Research
THREAT REPORT T3 2021