Malpedia Library

Click here to download all references as Bib-File.•

2021-05-11 ⋅ VMRay ⋅ Mateusz Lukaszewski, VMRay Labs Team
Threat Bulletin: Exploring the Differences and Similarities of Agent Tesla v2 & v3
Agent Tesla

2021-05-11 ⋅ CrowdStrike ⋅ The Falcon Complete Team
Response When Minutes Matter: Rising Up Against Ransomware
TinyMet

2021-05-11 ⋅ tisiphone.net blog ⋅ Lesley Carhart
Reasonable IR Team Expectations

2021-05-10 ⋅ TEAMT5 ⋅ Charles Li
APT Threat Landscape of Taiwan in 2020

2021-05-07 ⋅ TEAMT5 ⋅ Jhih-Lin Kuo, Zih-Cing Liao
"We Are About to Land": How CloudDragon Turns a Nightmare Into Reality
FlowerPower Appleseed BabyShark GoldDragon NavRAT

2021-05-07 ⋅ TEAMT5 ⋅ Aragorn Tseng, Charles Li
Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
Cobalt Strike PlugX Waterbear

2021-05-06 ⋅ Blackberry ⋅ BlackBerry Research and Intelligence team
Threat Thursday: Dr. REvil Ransomware Strikes Again, Employs Double Extortion Tactics
REvil

2021-05-05 ⋅ Symantec ⋅ Threat Hunter Team
Multi-Factor Authentication: Headache for Cyber Actors Inspires New Attack Techniques
CHINACHOPPER

2021-05-04 ⋅ Fox-IT ⋅ Fox IT, fumik0, the RIFT Team
RM3 – Curiosities of the wildest banking malware
ISFB

2021-05-03 ⋅ splunk ⋅ Splunk Threat Research Team
Clop Ransomware Detection: Threat Research Release, April 2021
Clop

2021-05-03 ⋅ Proofpoint ⋅ Bryan Campbell, Kelsey Merriman, Proofpoint Threat Research Team, Selena Larson
New Variant of Buer Loader Written in Rust
Buer

2021-04-29 ⋅ Maltego ⋅ Maltego Team
Investigating TA413 Threat Actor Group Using OpenCTI in Maltego

2021-04-24 ⋅ ⋅ Non-offensive security ⋅ Non-offensive security team
Detect Cobalt Strike server through DNS protocol
Cobalt Strike

2021-04-22 ⋅ xorl %eax, %eax ⋅ Anastasios Pingios
A gentle introduction to building a threat intelligence team

2021-04-21 ⋅ Cybleinc ⋅ cybleinc
Donot Team APT Group Is Back To Using Old Malicious Patterns
KnSpy

2021-04-16 ⋅ Team Cymru ⋅ Joshua Picolet
Transparent Tribe APT Infrastructure Mapping Part 1: A High-Level Study of CrimsonRAT Infrastructure October 2020 – March 2021
Crimson RAT

2021-04-15 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Operation Dream Job Targeting Job Seekers in South Korea
LCPDot Torisma

2021-04-13 ⋅ splunk ⋅ Splunk Threat Research Team
Detecting Clop Ransomware
Clop

2021-04-09 ⋅ ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
Dissemination of Korean document (HWP) titled inquiries related to North Korea

2021-04-09 ⋅ Microsoft ⋅ Emily Hacker, Justin Carroll, Microsoft 365 Defender Threat Intelligence Team
Investigating a unique “form” of email delivery for IcedID malware
IcedID