Malpedia Library

2021-08-04 ⋅ Security Intelligence ⋅ Allison Wikoff, Richard Emerson
ITG18: Operational Security Errors Continue to Plague Sizable Iranian Threat Group
LittleLooter

2021-07-29 ⋅ 360 Total Security ⋅ kate
“Netfilter Rootkit II ” Continues to Hold WHQL Signatures
NetfilterRootkit

2021-07-28 ⋅ Zscaler ⋅ Brett Stone-Gross
DoppelPaymer Continues to Cause Grief Through Rebranding
DoppelPaymer

2021-07-07 ⋅ Talos ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal (Network IOCs)
AllaKore Lilith NjRAT

2021-07-07 ⋅ Talos ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal (IOCs)
AllaKore Lilith NjRAT

2021-07-07 ⋅ Talos ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal
AllaKore Lilith NjRAT

2021-07-07 ⋅ Talos Intelligence ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal
AllaKore NjRAT SideCopy

2021-07-02 ⋅ Cisco ⋅ Asheer Malhotra, Justin Thattil
InSideCopy: How this APT continues to evolve its arsenal
AllaKore CetaRAT Lilith NjRAT ReverseRAT

2021-07-01 ⋅ Check Point ⋅ Check Point Research
IndigoZebra APT continues to attack Central Asia with evolving tools
BoxCaon xCaon IndigoZebra

2021-06-29 ⋅ Accenture ⋅ Accenture Security
HADES ransomware operators continue attacks
Cobalt Strike Hades MimiKatz

2021-06-28 ⋅ The DFIR Report ⋅ The DFIR Report
Hancitor Continues to Push Cobalt Strike
Cobalt Strike Hancitor

2021-06-22 ⋅ Qurium ⋅ Qurium
Attacks against media in the Philippines continue

2021-06-22 ⋅ Cisco ⋅ Nick Biasini
Attackers in Executive Clothing - BEC continues to separate orgs from their money

2021-06-01 ⋅ Malwarebytes ⋅ Hossein Jazi
Kimsuky APT continues to target South Korean government using AppleSeed backdoor
Appleseed

2021-05-02 ⋅ Cybleinc ⋅ cybleinc
Mobile Malware App Anubis Strikes Again, Continues to Lure Users Disguised as a Fake Antivirus
Anubis

2021-04-14 ⋅ IBM ⋅ Claire Zaboeva, Melissa Frydrych
An Update: The COVID-19 Vaccine’s Global Cold Chain Continues to Be a Target

2021-04-07 ⋅ RiskIQ ⋅ Team RiskIQ
Yanbian Gang Malware Continues with Wide-Scale Distribution and C2
Yanbian Gang

2021-04-07 ⋅ RiskIQ ⋅ Adam Castleman, Jordan Herman
Yanbian Gang Malware Continues with Wide-Scale Distribution and C2

2021-04-01 ⋅ SentinelOne ⋅ Jim Walter
Avaddon RaaS | Breaks Public Decryptor, Continues On Rampage
Avaddon

2021-03-17 ⋅ Recorded Future ⋅ Insikt Group®
China-linked TA428 Continues to Target Russia and Mongolia IT Companies
PlugX Poison Ivy TA428