Malpedia Library

Click here to download all references as Bib-File.•

2020-11-23 ⋅ Intel 471 ⋅ Intel 471
Here’s what happens after a business gets hit with ransomware

2020-11-23 ⋅ Medium ryancor ⋅ Ryan Cornateanu
Genetic Analysis of CryptoWall Ransomware
Cryptowall

2020-11-23 ⋅ S2W LAB Inc. ⋅ TALON
[S2W LAB] Analysis of Clop Ransomware suspiciously related to the Recent Incident
Clop

2020-11-23 ⋅ FBI ⋅ FBI
Alert Number I-112320-PSA: Spoofed FBI Internet Domains Pose Cyber and Disinformation Risks

2020-11-23 ⋅ Proofpoint ⋅ Proofpoint Threat Research Team
TA416 Goes to Ground and Returns with a Golang PlugX Malware Loader
PlugX MUSTANG PANDA

2020-11-23 ⋅ Bitdefender ⋅ Liviu Arsene, Radu Tudorica
TrickBot is Dead. Long Live TrickBot!
TrickBot

2020-11-23 ⋅ Youtube (OWASP DevSlop) ⋅ Negar Shabab, Noushin Shabab
Compromised Compilers - A new perspective of supply chain cyber attacks
ShadowPad

2020-11-22 ⋅ FireEye ⋅ Yihao Lim
Election Cyber Threats in the Asia-Pacific Region

2020-11-22 ⋅ Irshad's Blog ⋅ Irshad Muhammad
Analyzing an Emotet Dropper and Writing a Python Script to Statically Unpack Payload.
Emotet

2020-11-22 ⋅ Twitter (@Nocturnus) ⋅ Cybereason Nocturnus
Tweet on new modular stealer that steals passwords, credit cards data, cryptocurrency wallets and downloads further plugins.

2020-11-22 ⋅ malware.love ⋅ Robert Giczewski
Trickbot tricks again [UPDATE]
TrickBot

2020-11-21 ⋅ Toli Security ⋅ Toli Security
Multi-Vector Miner+Tsunami Botnet with SSH Lateral Movement
Tsunami

2020-11-21 ⋅ vxhive blog ⋅ 0xastrovax
Deep Dive Into HERMES Ransomware
Hermes

2020-11-21 ⋅ Medium Intel-Honey ⋅ Twitter (@intel_honey)
Reversing Anubis Malware
Anubis

2020-11-20 ⋅ 360 ⋅ kate
360 File-less Attack Protection Intercepts the Banker Trojan BBtok Active in Mexico
BBtok

2020-11-20 ⋅ Trend Micro ⋅ Abraham Camba, Bren Matthew Ebriega, Gilbert Sison
Weaponizing Open Source Software for Targeted Attacks
LaZagne Defray PlugX

2020-11-20 ⋅ Group-IB ⋅ Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
The Locking Egregor
Egregor QakBot

2020-11-20 ⋅ 360 netlab ⋅ Alex Turing, CNCERT, Hui Wang, Qihoo 360
MooBot on the run using another 0 day targeting UNIX CCTV DVR
MooBot

2020-11-20 ⋅ ZDNet ⋅ Catalin Cimpanu
The malware that usually installs ransomware and you need to remove right away
Avaddon BazarBackdoor Buer Clop Cobalt Strike Conti DoppelPaymer Dridex Egregor Emotet FriedEx MegaCortex Phorpiex PwndLocker QakBot Ryuk SDBbot TrickBot Zloader

2020-11-20 ⋅ DomainTools ⋅ Black Lotus Labs, Joe Slowik, Lumen
Current Events to Widespread Campaigns: Pivoting from Samples to Identify Activity