Malpedia Library

2020-12-29 ⋅ Intezer ⋅ Avigayil Mechtinger
Early Bird Catches the Worm: New Golang Worm Drops XMRig Miner on Servers

2020-12-14 ⋅ Intezer ⋅ Twitter (IntezerLabs)
Tweet on linux variant of Prometei botnet
Prometei

2020-12-09 ⋅ Intezer ⋅ Joakim Kennedy
A Zebra in Gopher's Clothing: Russian APT Uses COVID-19 Lures to Deliver Zebrocy
Zebrocy

2020-11-24 ⋅ Intezer ⋅ Avigayil Mechtinger
Stantinko’s Proxy After Your Apache Server
Stantinko

2020-11-12 ⋅ Twitter (@IntezerLabs) ⋅ Intezer
Tweet on Agelocker
AgeLocker

2020-11-05 ⋅ Intezer ⋅ Twitter (IntezerLabs)
Tweet on Ngioweb botnet
Ngioweb

2020-10-01 ⋅ Intezer ⋅ Avigayil Mechtinger, Nicole Fishbein
A Storm is Brewing: IPStorm Now Has Linux Malware
IPStorm

2020-09-08 ⋅ Intezer ⋅ Nicole Fishbein
Attackers Abusing Legitimate Cloud Monitoring Tools to Conduct Cyber Attacks

2020-09-03 ⋅ Intezer ⋅ Paul Litvak
Turning Open Source Against Malware

2020-08-19 ⋅ Intezer ⋅ Avigayil Mechtinger
ELF Malware Analysis 101 Part 2: Initial Analysis

2020-08-06 ⋅ Twitter (@IntezerLabs) ⋅ Intezer
Tweet on GOSH
GOSH

2020-07-28 ⋅ Intezer ⋅ Michael Kajiloti, Nicole Fishbein
Watch Your Containers: Doki Infecting Docker Servers in the Cloud
Doki

2020-05-21 ⋅ Intezer ⋅ Paul Litvak
The Evolution of APT15’s Codebase 2020
Ketrican Ketrum Okrum

2020-05-11 ⋅ Intezer ⋅ Twitter (IntezerLabs)
Tweet on LD-PRELOAD userland rootkit
Kinsing

2020-05-04 ⋅ Intezer ⋅ Paul Litvak
Kaiji: New Chinese Linux malware turning to Golang
Kaiji

2020-03-30 ⋅ Intezer ⋅ Michael Kajiloti
Fantastic payloads and where we find them
Dridex Emotet ISFB TrickBot