Malpedia Library

Click here to download all references as Bib-File.•

2021-08-05 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Angry Conti ransomware affiliate leaks gang's attack playbook
Conti

2021-08-05 ⋅ Uptycs ⋅ Siddharth Sharma
Cryptominer ELFs Using MSR to Boost Mining Process

2021-08-05 ⋅ cyble ⋅ Cyble
BlackMatter Under the Lens: An Emerging Ransomware Group Looking for Affiliates
DarkSide

2021-08-05 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Detecting Cobalt Strike: Government-Sponsored Threat Groups (APT32)
Cobalt Strike

2021-08-05 ⋅ ⋅ NSFOCUS ⋅ NSFOCUS
LOREC53 Organizational Analysis Report - Attack Activity Part

2021-08-05 ⋅ ⋅ Twitter (@BaoshengbinCumt) ⋅ 2ero
Attacks on NCGSA, MOITT, MOD, NSCP and SCO in Pakistan
NetWire RC

2021-08-05 ⋅ Symantec ⋅ Threat Hunter Team
Attacks Against Critical Infrastructure: A Global Concern
BlackEnergy DarkSide DistTrack Stuxnet

2021-08-05 ⋅ Group-IB ⋅ Nikita Rostovcev, Viktor Okorokov
Prometheus TDS The key to success for Campo Loader, Hancitor, IcedID, and QBot
Prometheus Backdoor Buer campoloader Hancitor IcedID QakBot

2021-08-04 ⋅ ⋅ ASEC ⋅ ASEC
S/W Download Camouflage, Spreading Various Kinds of Malware
Raccoon RedLine Stealer Remcos Vidar

2021-08-04 ⋅ Cybots AI
What Is Lemon Duck Attack?
Lemon Duck

2021-08-04 ⋅ BlackHat ⋅ David Evenden
Whoops, I Accidentally Helped Start the Offensive Intel Branch of a Foreign Intel Service

2021-08-04 ⋅ kienmanowar Blog ⋅ m4n0w4r, Tran Trung Kien
[QuickNote] MountLocker – Some pseudo-code snippets
Mount Locker

2021-08-04 ⋅ CrowdStrike ⋅ CrowdStrike Intelligence Team, CrowdStrike IR, Falcon OverWatch Team
PROPHET SPIDER Exploits Oracle WebLogic to Facilitate Ransomware Activity
Cobalt Strike Egregor Mount Locker Prophet Spider

2021-08-04 ⋅ Trend Micro ⋅ Janus Agcaoili, Jessie Prevost, Joelson Soares, Ryan Maglaque
Supply Chain Attacks from a Managed Detection and Response Perspective
REvil

2021-08-04 ⋅ BlackHat ⋅ Allison Wikoff, Richard Emerson
The Kitten that Charmed Me: The 9 Lives of a Nation State Attacker
LittleLooter

2021-08-04 ⋅ Security Intelligence ⋅ Allison Wikoff, Richard Emerson
ITG18: Operational Security Errors Continue to Plague Sizable Iranian Threat Group
LittleLooter

2021-08-04 ⋅ Netcraft ⋅ Graham Edgecombe
FluBot malware spreads to Australia
FluBot

2021-08-04 ⋅ Jan Gruber
Understanding BlackMatter's API Hashing
BlackMatter

2021-08-04 ⋅ FireEye ⋅ Doug Bienstock, Josh Madeley
Cloudy with a Chance of APTNovel Microsoft 365 Attacks in the Wild

2021-08-04 ⋅ Zero Day ⋅ Kim Zetter
Pegasus Spyware: How It Works and What It Collects
Chrysaor