Malpedia Library

Click here to download all references as Bib-File.•

2024-04-11 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
Rat King Configuration Parser
AsyncRAT DCRat Quasar RAT Venom RAT

2024-04-10 ⋅ Github (KekraLoader) ⋅ IWcommunityFR
Leak of Epsilon Stealer's source code
Epsilon Stealer

2024-04-10 ⋅ 2024-04-10 ⋅ Antonio Pirozzi, Sarthak Misraa
XZ Utils Backdoor | Threat Actor Planned to Inject Further Vulnerabilities
xzbot

2024-04-10 ⋅ 0ffset Blog ⋅ Daniel Bunce
Resolving Stack Strings with Capstone Disassembler & Unicorn in Python
Conti

2024-04-10 ⋅ ESET Research ⋅ Lukáš Štefanko
eXotic Visit campaign: Tracing the footprints of Virtual Invaders
XploitSPY

2024-04-10 ⋅ Proofpoint ⋅ Selena Larson, Tommy Madjar
Security Brief: TA547 Targets German Organizations with Rhadamanthys Stealer
Rhadamanthys

2024-04-09 ⋅ ⋅ Israel National Cyber Directorate ⋅ Israel National Cyber Directorate
קבוצת התקיפה האיראנית Black Shadow

2024-04-09 ⋅ eSentire ⋅ eSentire
Unraveling Not AZORult but Koi Loader: A Precursor to Koi Stealer
Koi Loader Koi Stealer

2024-04-09 ⋅ Hunt.io ⋅ Hunt.io
BlueShell: Four Years On, Still A Formidable Threat
BlueShell

2024-04-09 ⋅ Claroty ⋅ Team82
Unpacking the Blackjack Group's Fuxnet Malware
BlackJack

2024-04-09 ⋅ Immersive Labs ⋅ Immersive Labs
Havoc C2 Framework – A Defensive Operator’s Guide
Havoc

2024-04-09 ⋅ DCSO ⋅ DCSO CyTec
XZ Backdoor: How to check if your systems are affected
xzbot

2024-04-09 ⋅ kienmanowar Blog ⋅ m4n0w4r, Tran Trung Kien
[QuickNote] Phishing email distributes WarZone RAT via DBatLoader
Ave Maria DBatLoader

2024-04-08 ⋅ 0x0d4y ⋅ 0x0d4y
IcedID – Technical Analysis of an IcedID Lightweight x64 DLL
IcedID

2024-04-08 ⋅ Zscaler ⋅ Nikolaos Pantazopoulos
Automating Pikabot’s String Deobfuscation
Pikabot

2024-04-07 ⋅ cyber5w ⋅ M4lcode
Gafgyt Backdoor Analysis
Bashlite

2024-04-05 ⋅ Heimdal Security ⋅ Madalina Popovici
Powerhost’s ESXi Servers Encrypted with New SEXi Ransomware
SEXi SEXi

2024-04-05 ⋅ DARKReading ⋅ Tara Seals
Ransomware Desires VMware Hypervisors in Ongoing Campaign
SEXi SEXi

2024-04-04 ⋅ Twitter (@BushidoToken) ⋅ BushidoToken
Tweet about the SEXi Ransomware attack on IXMETRO POWERHOST
SEXi

2024-04-04 ⋅ Mandiant ⋅ Ashley Pearson, Austin Larsen, Billy Wong, John Wolfram, Joseph Pisano, Josh Murchie, Lukasz Lamparski, Matt Lin, Ron Craft, Ryan Hall, Shawn Chew, Tyler McLellan
Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies
TONERJAM