Malpedia Library

Click here to download all references as Bib-File.•

2021-06-25 ⋅ Microsoft ⋅ MSRC Team
Investigating and Mitigating Malicious Drivers
NetfilterRootkit

2021-06-24 ⋅ Blackberry ⋅ The BlackBerry Research and Intelligence Team
Threat Thursday: Agent Tesla Infostealer
Agent Tesla

2021-06-23 ⋅ Symantec ⋅ Threat Hunter Team
Ransomware: Growing Number of Attackers Using Virtual Machines
Mount Locker

2021-06-23 ⋅ Blackberry ⋅ BlackBerry Research and Intelligence team
PYSA Loves ChaChi: a New GoLang RAT
ChaChi Mespinoza

2021-06-22 ⋅ CrowdStrike ⋅ The Falcon Complete Team
Response When Minutes Matter: Falcon Complete Disrupts WIZARD SPIDER eCrime Operators
Cobalt Strike

2021-06-22 ⋅ Maltego ⋅ Intel 471, Maltego Team
Chasing DarkSide Affiliates: Identifying Threat Actors Connected to Darkside Ransomware Using Maltego & Intel 471
DarkSide DarkSide

2021-06-22 ⋅ Aqua ⋅ TEAM Nautilus
Attacks in the Wild on the Container Supply Chain and Infrastructure

2021-06-22 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
LV Ransomware
REvil

2021-06-15 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Hades Ransomware Operators Use Distinctive Tactics and Infrastructure
Cobalt Strike Hades

2021-06-14 ⋅ nccgroup ⋅ Fox-IT Data Science Team, NCCGroup
Incremental Machine Learning by Example: Detecting Suspicious Activity with Zeek Data Streams, River, and JA3 Hashes

2021-06-14 ⋅ Microsoft ⋅ Microsoft 365 Defender Research Team, Microsoft Threat Intelligence Center (MSTIC)
Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign

2021-06-13 ⋅ SecJuice ⋅ Secprentice
Blue Team Detection: DarkSide Ransomware
DarkSide

2021-06-11 ⋅ TEAMT5 ⋅ Linda Kuo, Zih-Cing Liao
Story of the ‘Phisherman’ -Dissecting Phishing Techniques of CloudDragon APT (slides)
Appleseed BabyShark

2021-06-10 ⋅ CrowdStrike ⋅ Falcon Spotlight Team
June 2021 Patch Tuesday: Six Actively Exploited Zero-Day Vulnerabilities and More Critical CVEs

2021-06-10 ⋅ splunk ⋅ Splunk Threat Research Team
Detecting Password Spraying Attacks: Threat Research Release May 2021

2021-06-10 ⋅ McAfee ⋅ ATR Operational Intelligence Team
Are Virtual Machines the New Gold for Cyber Criminals?
Babuk DarkSide

2021-06-08 ⋅ Gdata ⋅ Karsten Hahn
Picture this: Malware Hides in Steam Profile Images
SteamHide

2021-06-08 ⋅ Palo Alto Networks Unit 42 ⋅ Nathaniel Quist
TeamTNT Using WatchDog TTPs to Expand Its Cryptojacking Footprint

2021-06-07 ⋅ Graphika ⋅ The Graphika Team
Posing as Patriots

2021-06-04 ⋅ AhnLab ⋅ AhnLab ASEC Analysis Team
APT Attacks on Domestic Companies Using Library Files