Malpedia Library

Click here to download all references as Bib-File.•

2024-04-16 ⋅ HarfangLab ⋅ CYBER THREAT RESEARCH TEAM
Analysis of the APT31 Indictment
RAWDOOR APT31

2024-04-15 ⋅ UC Santa Cruz ⋅ Alonso Rojas, Alvaro A. Cardenas, Bing Huang, Emmanuele Zambon, Juan Lozano, Keerthi Koneru, Luis Salazar, Marina Krotofil, Ross Baldick, Sebastian R. Castro
A Tale of Two Industroyers: It was the Season of Darkness
Industroyer INDUSTROYER2

2024-04-15 ⋅ Positive Technologies ⋅ Aleksandr Badaev, Kseniya Naumova
SteganoAmor campaign: TA558 mass-attacking companies and public institutions all around the world
LokiBot 404 Keylogger Agent Tesla CloudEyE Formbook Remcos XWorm

2024-04-14 ⋅ DFIR.ch ⋅ Stephan Berger
Sysrv Infection (Linux Edition)
Sysrv-hello

2024-04-13 ⋅ cyber5w ⋅ cyber5w, M4lcode
Analysis of malicious Microsoft office macros
AsyncRAT Ave Maria

2024-04-12 ⋅ Github (kevoreilly) ⋅ Kevin O’Reilly
DoomedLoader YARA rule
SquidLoader

2024-04-12 ⋅ Volexity ⋅ Volexity Threat Research
Zero-Day Exploitation of Unauthenticated Remote Code Execution Vulnerability in GlobalProtect (CVE-2024-3400)
UPSTYLE UTA0218

2024-04-12 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
UPSTYLE

2024-04-11 ⋅ Microsoft ⋅ Mark Russinovich
How Microsoft discovers and mitigates evolving attacks against AI guardrails

2024-04-11 ⋅ paloalto Netoworks: Unit42 ⋅ paloalto Networks: Unit42
Contact Forms Campaign Pushes SSLoad Malware
SSLoad

2024-04-11 ⋅ Twitter (@embee_research) ⋅ Embee_research
Tracking Malicious Infrastructure With DNS Records - Vultur Banking Trojan
Vultur

2024-04-11 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
Rat King Configuration Parser
AsyncRAT DCRat Quasar RAT Venom RAT

2024-04-10 ⋅ Github (KekraLoader) ⋅ IWcommunityFR
Leak of Epsilon Stealer's source code
Epsilon Stealer

2024-04-10 ⋅ 2024-04-10 ⋅ Antonio Pirozzi, Sarthak Misraa
XZ Utils Backdoor | Threat Actor Planned to Inject Further Vulnerabilities
xzbot

2024-04-10 ⋅ 0ffset Blog ⋅ Daniel Bunce
Resolving Stack Strings with Capstone Disassembler & Unicorn in Python
Conti

2024-04-10 ⋅ ESET Research ⋅ Lukáš Štefanko
eXotic Visit campaign: Tracing the footprints of Virtual Invaders
XploitSPY

2024-04-10 ⋅ Proofpoint ⋅ Selena Larson, Tommy Madjar
Security Brief: TA547 Targets German Organizations with Rhadamanthys Stealer
Rhadamanthys

2024-04-09 ⋅ ⋅ Israel National Cyber Directorate ⋅ Israel National Cyber Directorate
קבוצת התקיפה האיראנית Black Shadow

2024-04-09 ⋅ eSentire ⋅ eSentire
Unraveling Not AZORult but Koi Loader: A Precursor to Koi Stealer
Koi Loader Koi Stealer

2024-04-09 ⋅ Hunt.io ⋅ Hunt.io
BlueShell: Four Years On, Still A Formidable Threat
BlueShell