Malpedia Library

Click here to download all references as Bib-File.•

2023-12-01 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on Danabot leading to cactus ransomware
Cactus DanaBot Storm-1044

2023-12-01 ⋅ ⋅ Genians ⋅ Genius Security Center
Cases of attacks disguised as North Korean market price analysis documents, etc. CVE-2022-41128 vulnerability called with HWP, HWPX, DOCX, XLSX files

2023-12-01 ⋅ The Record ⋅ Daryna Antoniuk
Russian developer of Trickbot malware pleads guilty, faces 35-year sentence
TrickBot

2023-11-30 ⋅ Medium g0njxa ⋅ g0njxa
Approaching stealers devs : a brief interview with Vidar
Vidar

2023-11-30 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team, Dmitry Bestuzhev
AeroBlade on the Hunt Targeting the U.S. Aerospace Industry
AeroBlade

2023-11-28 ⋅ Medium g0njxa ⋅ g0njxa
Approaching stealers devs : a brief interview with Meduza
Meduza Stealer

2023-11-28 ⋅ FortiGuard Labs ⋅ Cara Lin
GoTitan Botnet - Ongoing Exploitation on Apache ActiveMQ
GoTitan

2023-11-27 ⋅ SentinelOne ⋅ Phil Stokes
DPRK Crypto Theft | macOS RustBucket Droppers Pivot to Deliver KandyKorn Payloads
HLOADER KANDYKORN RustBucket SUGARLOADER

2023-11-26 ⋅ Medium shaddy43 ⋅ Shayan Ahmed Khan
From Infection to Encryption: Tracing the Impact of RYUK Ransomware
Ryuk

2023-11-24 ⋅ Medium g0njxa ⋅ g0njxa
Approaching stealers devs : a brief interview with Recordbreaker
Raccoon RecordBreaker

2023-11-22 ⋅ Twitter (@embee_research) ⋅ Embee_research
Practical Queries for Malware Infrastructure - Part 3 (Advanced Examples)
BianLian Xtreme RAT NjRAT QakBot RedLine Stealer Remcos

2023-11-21 ⋅ Checkpoint ⋅ Marc Salinas Fernandez
The Platform Matters: A Comparative Study on Linux and Windows Ransomware Attacks
Gwisin

2023-11-21 ⋅ Censys ⋅ Aidan Holland
Tracking Vidar Infrastructure with Censys
Vidar

2023-11-21 ⋅ Reliaquest ⋅ James Xiang
Scattered Spider Attack Analysis

2023-11-21 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors
BeaverTail InvisibleFerret WageMole

2023-11-21 ⋅ Medium infoSec Write-ups ⋅ JustAnother-Engineer
Unmasking NJRat: A Deep Dive into a Notorious Remote Access Trojan Part1
NjRAT

2023-11-21 ⋅ adlumin ⋅ adlumin
PlayCrypt Ransomware-as-a-Service Expands Threat from Script Kiddies and Sophisticated Attackers
PLAY

2023-11-20 ⋅ PWC ⋅ Sveva Vittoria Scenarelli
King of Thieves: Black Alicanto and the Ecosystem of North Korea-Based Cyber Operations
RustBucket CageyChameleon RustBucket

2023-11-20 ⋅ Trend Micro ⋅ Peter Girnus
CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits

2023-11-20 ⋅ Outpost24 ⋅ Alberto Marín
Unveiling LummaC2 stealer’s novel Anti-Sandbox technique: Leveraging trigonometry for human behavior detection
Lumma Stealer