Malpedia Library

Click here to download all references as Bib-File.•

2020-12-22 ⋅ Prevasio ⋅ Sergei Shevchenko
Sunburst Backdoor, Part III: DGA & Security Software (Broken Link)
SUNBURST

2020-12-15 ⋅ Prevasio ⋅ Sergei Shevchenko
Sunburst Backdoor: A Deeper Look Into The SolarWinds' Supply Chain Malware (Broken link)
SUNBURST

2020-12-11 ⋅ ⋅ NTT Security ⋅ Hiroki Hada
Panda’s New Arsenal: Part 3 Smanager
FunnyDream SManager Tmanger

2020-12-07 ⋅ Group-IB ⋅ Victor Okorokov
Massive malicious campaign by FakeSecurity JS-sniffer

2020-11-18 ⋅ ⋅ NTT Security ⋅ Hiroki Hada
Panda’s New Arsenal: Part 2 Albaniiutas
Albaniiutas

2020-10-15 ⋅ ⋅ NTT Security ⋅ Hiroki Hada
Panda’s New Arsenal: Part 1 Tmanger
Tmanger

2020-09-18 ⋅ KELA ⋅ Raveed Laeb, Victoria Kivilevich
The Initial Access Broker’s Toolbox – Remote Monitoring and Management

2020-09-14 ⋅ Trend Micro ⋅ Abraham Camba, Aprilyn Borja, Gilbert Sison, Jay Yaneza, Khristoffer Jocson, Ryan Maglaque
Analysis of a Convoluted Attack Chain Involving Ngrok

2020-08-06 ⋅ KELA ⋅ Raveed Laeb, Victoria Kivilevich
The Secret Life of an Initial Access Broker

2020-05-21 ⋅ Sophos ⋅ SophosLabs Uncut
Asnarök attackers twice modified attack midstream
NOTROBIN Ragnarok

2020-05-04 ⋅ blackarrow ⋅ Borja Merino
Ragnarok Stopper: development of a vaccine
Ragnarok

2020-04-30 ⋅ Sophos ⋅ Sophos
“Asnarök” Trojan targets firewalls

2020-01-28 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Ragnarok Ransomware Targets Citrix ADC, Disables Windows Defender
Ragnarok

2020-01-25 ⋅ Github (k-vitali) ⋅ Vitali Kremez
Extracted Config for Ragnarok Ransomware
Ragnarok

2019-12-18 ⋅ Github (psrok1) ⋅ Paweł Srokosz
IcedID PNG Extractor
IcedID

2019-10-01 ⋅ Virus Bulletin ⋅ Anna Shirokova, María José Erquiaga, Sebastian García
Geost botnet. The story of the discovery of a new Android banking trojan from an OpSec error
Geost

2019-05-07 ⋅ Symantec ⋅ Security Response Attack Investigation Team
Buckeye: Espionage Outfit Used Equation Group Tools Prior to Shadow Brokers Leak
DoublePulsar

2018-12-13 ⋅ Trend Micro ⋅ Mohamad Mokbel
Tildeb: An Implant from the Shadow Brokers’ Leak
tildeb

2018-11-16 ⋅ ⋅ Kim Yejun
Return to ROKRAT!! (feat. FAAAA...Sad...)
RokRAT

2018-02-27 ⋅ VMWare Carbon Black ⋅ Jared Myers
Threat Analysis: ROKRAT Malware
RokRAT