Malpedia Library

Click here to download all references as Bib-File.•

2021-06-08 ⋅ Trend Micro ⋅ David Sancho, Feike Hacquebord, Fernando Mercês, Ian Kenefick, Mayra Fuentes, Robert McArdle, Stephen Hilt, Vladimir Kropotov
Modern Ransomware’s Double Extortion Tactics and How to Protect Enterprises Against Them
Nefilim

2021-06-08 ⋅ SentinelOne ⋅ Juan Andrés Guerrero-Saade
ThunderCats Hack the FSB | Your Taxes Didn’t Pay For This Op
Mail-O SManager Tmanger

2021-06-08 ⋅ CrowdStrike ⋅ Patrick Bennett
UAL Thank Us Later: Leveraging User Access Logging for Forensic Investigations

2021-06-08 ⋅ Palo Alto Networks Unit 42 ⋅ Nathaniel Quist
TeamTNT Using WatchDog TTPs to Expand Its Cryptojacking Footprint

2021-06-08 ⋅ Advanced Intelligence ⋅ Vitali Kremez, Yelisey Boguslavskiy
From QBot...with REvil Ransomware: Initial Attack Exposure of JBS
QakBot REvil

2021-06-08 ⋅ CrowdStrike ⋅ Hanno Heinrichs, Heather Smith
Another Brick in the Wall: eCrime Groups Leverage SonicWall VPN Vulnerability

2021-06-07 ⋅ ATOS ⋅ Loïc Castel
Avaddon Ransomware Analysis
Avaddon

2021-06-07 ⋅ Graphika ⋅ The Graphika Team
Posing as Patriots

2021-06-07 ⋅ Kaspersky ⋅ Anton Kuzmenko
Gootkit: the cautious Trojan
GootKit

2021-06-07 ⋅ Wired ⋅ Andy Greenberg
Ransomware Struck Another Pipeline Firm—and 70GB of Data Leaked

2021-06-07 ⋅ Gdata ⋅ Karsten Hahn
Malware family naming hell is our own fault

2021-06-07 ⋅ Palo Alto Networks Unit 42 ⋅ Daniel Prizmant
Siloscape: First Known Malware Targeting Windows Containers to Compromise Cloud Environments

2021-06-07 ⋅ Department of Justice ⋅ Office of Public Affairs
Department of Justice Seizes $2.3 Million in Cryptocurrency Paid to the Ransomware Extortionists Darkside
DarkSide

2021-06-07 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Adventures in Contacting the Russian FSB

2021-06-07 ⋅ Twitter (@James_inthe_box) ⋅ James_inthe_box
Tweet on characteristic strings in snake keylogger
404 Keylogger

2021-06-07 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Inside the SystemBC Malware-As-A-Service
Ryuk SystemBC TrickBot

2021-06-06 ⋅ Bleeping Computer ⋅ Lawrence Abrams
New Evil Corp ransomware mimics PayloadBin gang to evade US sanctions
Babuk FriedEx PayloadBIN WastedLocker

2021-06-05 ⋅ Prevailion ⋅ Danny Adamitis
The Gh0st remain the same
Winnti

2021-06-05 ⋅ Cybleinc ⋅ cybleinc
Prometheus: An Emerging Ransomware Group Using Thanos Ransomware To Target Organizations
Hakbit

2021-06-05 ⋅ Anchored Narratives on Threat Intelligence and Geopolitics ⋅ RJM
Geopolitical nation-state threat actor overview May 2021