Malpedia Library

Click here to download all references as Bib-File.•

2025-09-02 ⋅ BitSight ⋅ Pedro Umbelino
RapperBot: From Infection to DDoS in a Split Second
RapperBot

2025-09-02 ⋅ Reverse The Malware ⋅ Diyar Saadi
Agent and Malware: What is the difference?

2025-09-01 ⋅ cocomelonc ⋅ cocomelonc
MacOS hacking part 11: bind shell for ARM (M1). Simple Assembly (M1) and C (run shellcode) examples

2025-08-29 ⋅ Amazon ⋅ CJ Moses
Amazon disrupts watering hole campaign by Russia’s APT29

2025-08-29 ⋅ Nextron Systems ⋅ Pezier Pierre-Henri
Sindoor Dropper: New Phishing Campaign
Sindoor

2025-08-29 ⋅ Shindan ⋅ Paul Viard
GodFather - Part 1 - A multistage dropper
Godfather

2025-08-28 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick 51: steal data via legit Bitbucket API. Simple C example.

2025-08-28 ⋅ Gdata ⋅ Karsten Hahn, Louis Sorita
AppSuite PDF Editor Backdoor: A Detailed Technical Analysis
TamperedChef

2025-08-28 ⋅ Trend Micro ⋅ Nick Dai, Pierre Lee
TAOTH Campaign Exploits End-of-Support Software to Target Traditional Chinese Users and Dissidents
Cobalt Strike Merlin

2025-08-28 ⋅ Checkpoint ⋅ Checkpoint Research
Chasing the Silver Fox: Cat & Mouse in Kernel Shadows
ValleyRAT

2025-08-28 ⋅ Aryaka Networks ⋅ bikash dash, varadharajan krishnasamy
Vidar Infostealer in Action From API Hooking to Covert Data Exfiltration
Vidar

2025-08-28 ⋅ Intrinsec ⋅ David Sardinha
VAIZ, FDN3, TK-NET: A nebula of Ukrainian networks engaged in brute force and password spraying attacks
Amadey

2025-08-28 ⋅ Reverse The Malware ⋅ Diyar Saadi
What are Binder Techniques, and how can we identify them?

2025-08-28 ⋅ Reverse The Malware ⋅ Diyar Saadi
What are Wrapper Techniques, and how can we identify them?

2025-08-28 ⋅ Defentive ⋅ Defentive Threat Research
The Phantom Threat: Inside UNC5518’s Invisible Empire of MetaStealer Operations
MetaStealer

2025-08-27 ⋅ TRUESEC ⋅ Andreas Törnqvist, Mattias Wåhlén, Nicklas Keijser, oscar Wolf
Tamperedchef – The Bad PDF Editor
TamperedChef

2025-08-27 ⋅ StepSecurity ⋅ Anish Kurmi
Supply Chain Security Alert: Popular Nx Build System Package Compromised with Data-Stealing Malware
s1ngularity Stealer

2025-08-27 ⋅ Recorded Future ⋅ Insikt Group
One Step Ahead: Stark Industries Solutions Preempts EU Sanctions

2025-08-27 ⋅ Anthropic ⋅ Anthropic
Anthropic - Threat Intelligence Report: August 2025
BeaverTail OtterCookie GolangGhost InvisibleFerret GolangGhost

2025-08-27 ⋅ US Department of Defense ⋅ CISA
Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage System