Malpedia Library

Click here to download all references as Bib-File.•

2018-03-30 ⋅ ⋅ 360 Threat Intelligence ⋅ Qi Anxin Threat Intelligence Center
Analysis of the latest cyber attack activity of the APT organization against sensitive institutions in China
Quasar RAT

2018-03-29 ⋅ Stormshield ⋅ Rémi Jullian
In-depth Formbook malware analysis – Obfuscation and process injection
Formbook

2018-03-29 ⋅ Trend Micro ⋅ MingYen Hsieh, Tamada Kiyotaka
ChessMaster Adds Updated Tools to Its Arsenal
Anel

2018-03-27 ⋅ Trend Micro ⋅ Trendmicro
Evolving Trickbot Adds Detection Evasion and Screen-Locking Features
TrickBot

2018-03-25 ⋅ Vitali Kremez Blog ⋅ Vitali Kremez
Let's Learn: Internals of Iranian-Based Threat Group "Chafer" Malware: Autoit and PowerShell Persistence
OilRig

2018-03-23 ⋅ FireEye ⋅ Sudeep Singh, Yijie Sui
Sanny malware delivery method updated in recently observed attacks.
Sanny

2018-03-23 ⋅ United States Department of Justice ⋅ United States Department of Justice
Nine Iranians Charged With Conducting Massive Cyber Theft Campaign on Behalf of the Islamic Revolutionary Guard Corps
Silent Librarian

2018-03-22 ⋅ Sekoia ⋅ sekoia
Falling on MuddyWater
POWERSTATS

2018-03-20 ⋅ Stormshield ⋅ Mehdi Talbi
De-obfuscating Jump Chains with Binary Ninja
Locky

2018-03-20 ⋅ Palo Alto Networks Unit 42 ⋅ Kyle Wilhoit, Ruchna Nigam
TeleRAT: Another Android Trojan Leveraging Telegram’s Bot API to Target Iranian Users
IRRat TeleRAT

2018-03-20 ⋅ CyberScoop ⋅ Chris Bing, Patrick Howell O'Neill
Kaspersky's 'Slingshot' report burned an ISIS-focused intelligence operation
Slingshot

2018-03-14 ⋅ Trend Micro ⋅ Jaromír Hořejší, Joey Chen, Joseph C. Chen
Tropic Trooper’s New Strategy
KeyBoy APT23

2018-03-14 ⋅ Symantec ⋅ Network Protection Security Labs, Security Response Attack Investigation Team
Inception Framework: Alive and Well, and Hiding Behind Proxies
Inception Framework

2018-03-14 ⋅ Threatpost ⋅ Tom Spring
New POS Malware PinkKite Takes Flight
AbaddonPOS

2018-03-13 ⋅ FireEye ⋅ Ben Read, Dileep Kumar Jallepalli, Sudeep Singh, Yogesh Londhe
Iranian Threat Group Updates Tactics, Techniques and Procedures in Spear Phishing Campaign
POWERSTATS MuddyWater

2018-03-13 ⋅ Kaspersky Labs ⋅ Denis Makrushin, Yury Namestnikov
Time of death? A therapeutic postmortem of connected medicine
PlugX

2018-03-12 ⋅ Trend Micro ⋅ Jaromír Hořejší
Campaign Possibly Connected to “MuddyWater” Surfaces in the Middle East and Central Asia
POWERSTATS MuddyWater

2018-03-12 ⋅ Veronica Valeros' Blog ⋅ Veronica Valeros
A Study of RATs: Third Timeline Iteration
XpertRAT

2018-03-09 ⋅ Kaspersky Labs ⋅ GReAT
Masha and these Bears - 2018 Sofacy Activity

2018-03-09 ⋅ Adam Senft, Bill Marczak, Jakub Dalek, John Scott-Railton, Ron Deibert, Sarah McKune
Sandvine’s PacketLogic Devices Used to Deploy Government Spyware in Turkey and Redirect Egyptian Users to Affiliate Ads?
StrongPity