Malpedia Library

Click here to download all references as Bib-File.•

2021-08-25 ⋅ GoggleHeadedHacker Blog ⋅ Jacob Pimental
Reverse Engineering Crypto Functions: RC4 and Salsa20
REvil

2021-08-25 ⋅ Cybleinc ⋅ cybleinc
LockFile Ransomware: Exploiting Microsoft Exchange Vulnerabilities Using ProxyShell
LockFile

2021-08-25 ⋅ Trend Micro ⋅ Bin Lin, William Gamazo Sanchez
New Campaign Sees LokiBot Delivered Via Multiple Methods
Loki Password Stealer (PWS)

2021-08-25 ⋅ FBI ⋅ FBI
MC-000150-MW: Indicators of Compromise Associated with Hive Ransomware
Hive

2021-08-25 ⋅ RiskIQ ⋅ Jordan Herman
EITest: Linkages to the Ongoing Malware Delivery Campaign Referred to as "Gootloader"
GootLoader

2021-08-25 ⋅ Twitter (@malwrhunterteam) ⋅ MalwareHunterTeam
Tweet on Hydra-variant with Dutch ransom note
Nitro

2021-08-25 ⋅ Github (StrangerealIntel) ⋅ StrangerealIntel
FIN7 still active

2021-08-24 ⋅ Trend Micro ⋅ Hara Hiroaki, Ted Lee
Earth Baku Returns
Cobalt Strike CROSSWALK DUSTPAN SideWalk

2021-08-24 ⋅ ⋅ Basque Cybersecurity Centre ⋅ Basque Cybersecurity Centre
VIRLOCK
VirLock

2021-08-24 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Ransomware gang's script shows exactly the files they're after
Mespinoza

2021-08-24 ⋅ KELA ⋅ KELA Cyber Intelligence Center
LockBit 2.0 Interview with Russian OSINT
LockBit

2021-08-24 ⋅ cyble ⋅ Cyble
A Deep-dive Analysis of KARMA Ransomware
Karma

2021-08-24 ⋅ Vice Motherboard ⋅ Joseph Cox
How Data Brokers Sell Access to the Backbone of the Internet

2021-08-24 ⋅ ESET Research ⋅ Mathieu Tartare, Thibaut Passilly
The SideWalk may be as dangerous as the CROSSWALK
Cobalt Strike CROSSWALK SideWalk SparklingGoblin

2021-08-24 ⋅ Volexity ⋅ Damien Cash, Josh Grunzweig, Steven Adair, Thomas Lancaster
North Korean BLUELIGHT Special: InkySquid Deploys RokRAT
RokRAT

2021-08-24 ⋅ Radware ⋅ Radware
Dark.IoT Botnet Realtek AP-Router SDK Vulnerability CVE-2021-35395
Dark Mirai

2021-08-24 ⋅ Kaspersky ⋅ Igor Golovin
Triada Trojan in WhatsApp MOD
Triada

2021-08-24 ⋅ Palo Alto Networks Unit 42 ⋅ Doel Santos, Ruchna Nigam
Ransomware Groups to Watch: Emerging Threats
HelloKitty AvosLocker HelloKitty Hive LockBit

2021-08-24 ⋅ CitizenLab ⋅ Ali Abdulemam, Bill Marczak, John Scott-Railton, Kristin Berdan, Noura Al-Jizawi, Ron Deibert, Siena Anstis
From Pearl to Pegasus Bahraini Government Hacks Activists with NSO Group Zero-Click iPhone Exploits
Chrysaor

2021-08-23 ⋅ SentinelOne ⋅ Joey Chen, Yi-Jhen Hsieh
ShadowPad: the Masterpiece of Privately Sold Malware in Chinese Espionage
PlugX ShadowPad