Malpedia Library

2022-01-21 ⋅ vmware ⋅ Jason Zhang, Threat Analysis Unit
Emotet Is Not Dead (Yet)
Emotet

2022-01-21 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
WhisperGate: Not NotPetya
WhisperGate

2022-01-21 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Disruptive Attacks in Ukraine Likely Linked to Escalating Tensions
WhisperGate

2022-01-20 ⋅ Trellix ⋅ Mo Cashman, Raj Samani, Taylor Mullins
Update on WhisperGate, Destructive Malware Targeting Ukraine – Threat Intelligence & Protections Update
WhisperGate

2022-01-20 ⋅ Palo Alto Networks Unit 42 ⋅ Josh Grunzweig, Mike Harbison, Robert Falcone
Threat Brief: Ongoing Russia and Ukraine Cyber Conflict
WhisperGate

2022-01-20 ⋅ Spamhaus ⋅ Spamhaus Malware Labs
Spamhaus Botnet Threat Update Q4 2021

2022-01-20 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: Purple Fox Rootkit
PurpleFox

2022-01-18 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA
WhisperGate

2022-01-18 ⋅ Medium (Scarlet Shark) ⋅ Scarlet Shark
PerSwaysion Threat Actor Updates Their Techniques and Infrastructure
PerSwaysion

2022-01-15 ⋅ Huntress Labs ⋅ Team Huntress
Threat Advisory: VMware Horizon Servers Actively Being Hit With Cobalt Strike (by DEV-0401)
Cobalt Strike

2022-01-15 ⋅ Microsoft ⋅ Microsoft, Microsoft 365 Defender Threat Intelligence Team, Microsoft Detection and Response Team (DART), Microsoft Digital Security Unit (DSU), Microsoft Security Intelligence
Destructive malware targeting Ukrainian organizations (DEV-0586)
WhisperGate DEV-0586

2022-01-14 ⋅ Twitter (@billyleonard) ⋅ Billy Leonard, Google Threat Analysis Group
Tweet on APT28 credential phishing campaigns targeting Ukraine

2022-01-13 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: Jupyter Infostealer is a Master of Disguise
solarmarker

2022-01-12 ⋅ Sentinel LABS ⋅ Amitai Ben Shushan Ehrlich
Wading Through Muddy Waters | Recent Activity of an Iranian State-Sponsored Threat Actor
PowGoop

2022-01-11 ⋅ Recorded Future ⋅ Insikt Group®
Combating Human Trafficking With Threat Intelligence

2022-01-11 ⋅ Cybereason ⋅ Chen Erlich, Daichi Shimabukuro, Niv Yona, Ofir Ozer, Omri Refaeli
Threat Analysis Report: DatopLoader Exploits ProxyShell to Deliver QBOT and Cobalt Strike
Cobalt Strike QakBot Squirrelwaffle

2022-01-10 ⋅ splunk ⋅ Splunk Threat Research Team
Detecting Malware Script Loaders using Remcos: Threat Research Release December 2021
Remcos

2022-01-07 ⋅ Malwarebytes ⋅ Threat Intelligence Team
Patchwork APT caught in its own web
BadNews

2022-01-05 ⋅ ARMOR ⋅ Armor
Threat Intelligence Report: The Evolution of Doppel Spider from BitPaymer to Grief Ransomware
DoppelPaymer FriedEx

2022-01-01 ⋅ aspirets ⋅ Michael Lamb
Bumblebee Malware Loader: Threat Analysis
BumbleBee