Malpedia Library

Click here to download all references as Bib-File.•

2018-02-28 ⋅ Cisco Talos ⋅ Vitor Ventura, Warren Mercer
CannibalRAT targets Brazil
Cannibal Rat

2018-02-27 ⋅ ThreatVector ⋅ Cylance Threat Research Team
Threat Spotlight: Inside UDPoS Malware

2018-02-27 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White
Dissecting Hancitor’s Latest 2018 Packer
Hancitor

2018-02-27 ⋅ VMWare Carbon Black ⋅ Jared Myers
Threat Analysis: ROKRAT Malware
RokRAT

2018-02-26 ⋅ Opcode Security research ⋅ ntopcode
Anatomy of the Process Environment Block (PEB) (Windows Internals)

2018-02-26 ⋅ Secure coding and more blog ⋅ Antonio Parata
Analyzing the nasty .NET protection of the Ploutus.D malware
Ploutus ATM

2018-02-26 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
Nanocore RAT Author Gets 33 Months in Prison
Nanocore RAT

2018-02-26 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Thanatos Ransomware Is First to Use Bitcoin Cash. Messes Up Encryption
Thanatos Ransomware

2018-02-23 ⋅ Malwarebytes ⋅ hasherezade
Avzhan DDoS bot dropped by Chinese drive-by attack
Avzhan

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #3: Fixing The Function-Related Issues
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #2: First Attempt At Devirtualization
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #1: Deobfuscating FinSpy VM Bytecode Programs
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #4: Second Attempt At Devirtualization
FinFisher RAT

2018-02-21 ⋅ GitHub (RolfRolles) ⋅ Rolf Rolles
FinSpyVM (Static Unpacker for FinSpyVM)
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization
FinFisher RAT

2018-02-21 ⋅ Avast ⋅ Threat Intelligence Team
Avast tracks down Tempting Cedar Spyware
TemptingCedar Spyware

2018-02-21 ⋅ Lastline ⋅ Alexander Sevtsov, Stefano Ortolani
Olympic Destroyer: A new Candidate in South Korea
Olympic Destroyer

2018-02-20 ⋅ Kaspersky Labs ⋅ GReAT
A Slice of 2017 Sofacy Activity
X-Agent Seduploader X-Agent Zebrocy Zebrocy (AutoIT) APT28

2018-02-20 ⋅ Joe Security's Blog ⋅ Joe Security
Latest Elise APT comes packed with Sandbox Evasions
Elise

2018-02-20 ⋅ Twitter (@JohnLaTwC) ⋅ John Lambert
Tweet on EvilOSX
EvilOSX