Malpedia Library

Click here to download all references as Bib-File.•

2017-11-28 ⋅ RiskIQ ⋅ Yonathan Klijnsma
Gaffe Reveals Full List of Targets in Spear Phishing Attack Using Cobalt Strike Against Financial Institutions
Cobalt

2017-11-28 ⋅ SentinelOne ⋅ Arnaud Abbati
OSX.CPUMEANER: New Cryptocurrency Mining Trojan Targets MacOS
CpuMeaner

2017-11-28 ⋅ Cisco ⋅ Jungsoo An, Paul Rascagnères, Warren Mercer
ROKRAT Reloaded
RokRAT

2017-11-25 ⋅ Kaspersky Labs ⋅ Alexey Shulmin, Dmitry Karasovsky, Vasily Berdnikov
MICROCIN MALWARE: TECHNICAL DETAILS AND INDICATORS OF COMPROMISE
Microcin Vicious Panda

2017-11-24 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
Mirai Activity Picks up Once More After Publication of PoC Exploit Code
Mirai

2017-11-22 ⋅ Reaqta ⋅ Reaqta
A dive into MuddyWater APT targeting Middle-East
POWERSTATS

2017-11-22 ⋅ Flashpoint ⋅ Vitali Kremez
Trickbot Gang Evolves, Incorporates Account Checking Into Hybrid Attack Model
TrickBot

2017-11-21 ⋅ bugaroo ⋅ Oscar Juárez
New banking malware in Brazil - XPCTRA RAT ANALYSIS
XPCTRA

2017-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Anthony Kasza, Juan Cortes, Micah Yates
Operation Blockbuster Goes Mobile
HARDRAIN

2017-11-19 ⋅ Arab News ⋅ ELISE KNUTSEN
Iranian agents blackmailed BBC reporter with ‘naked photo’ threats
Charming Kitten

2017-11-16 ⋅ Github (mdsecactivebreach) ⋅ Vincent Yiu
CACTUSTORCH: Payload Generation for Adversary Simulations
CACTUSTORCH

2017-11-14 ⋅ Palo Alto Networks Unit 42 ⋅ Tom Lancaster
Muddying the Water: Targeted Attacks in the Middle East
POWERSTATS MuddyWater

2017-11-14 ⋅ Department of Homeland Security ⋅ Department of Homeland Security
HIDDEN COBRA – North Korean Remote Administration Tool: FALLCHILL
Lazarus Group

2017-11-13 ⋅ Obscurity Labs ⋅ Obscurity Labs
Match Made In The Shadows: Part [3]
PeddleCheap

2017-11-12 ⋅ MalwareBreakdown
Seamless Campaign Delivers Ramnit via RIG EK at 188.225.82.158. Follow-up Malware is AZORult Stealer.
Azorult

2017-11-09 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
Ordinypt Ransomware Intentionally Destroys Files, Currently Targeting Germany
Ordinypt

2017-11-08 ⋅ Reaqta ⋅ Reaqta
A short journey into DarkVNC attack chain
DarkVNC

2017-11-08 ⋅ Palo Alto Networks Unit 42 ⋅ Robert Falcone
OilRig Deploys “ALMA Communicator” – DNS Tunneling Trojan
Alma Communicator

2017-11-08 ⋅ SecurityIntelligence ⋅ Gadi Ostrovsky, Limor Kessem
Overlay RAT Malware Uses AutoIt Scripting to Bypass Antivirus Detection
Overlay RAT

2017-11-07 ⋅ ThreatVector ⋅ Cylance Threat Research Team
Locky Ransomware
Locky