Malpedia Library

Click here to download all references as Bib-File.•

2021-03-02 ⋅ Cisco Talos ⋅ Asheer Malhotra
ObliqueRAT returns with new campaign using hijacked websites
Oblique RAT

2021-03-02 ⋅ Atlantic Council ⋅ James Shires, JD Work, Luca Allodi, Patrick Howell O'Neill, Robert Morgus, Trey Herr, Winnona Desombre
Countering Cyber Proliferation: Zeroing in on Access-as-a-Service

2021-03-02 ⋅ Medium Mehmet Ergene ⋅ Mehmet Ergene
Hunting for the Behavior: Scheduled Tasks

2021-03-02 ⋅ Microsoft ⋅ Microsoft Threat Intelligence Center (MSTIC)
HAFNIUM targeting Exchange Servers with 0-day exploits
PowerCat

2021-03-02 ⋅ Intezer ⋅ Joakim Kennedy
When Viruses Mutate: Did SunCrypt Ransomware Evolve from QNAPCrypt?
QNAPCrypt SunCrypt

2021-03-01 ⋅ YouTube (John Hammond) ⋅ John Hammond
Mozi Malware - Finding Breadcrumbs...
Mozi

2021-03-01 ⋅ Acronis ⋅ Acronis Security
Threat analysis: Dharma (CrySiS) ransomware
Dharma

2021-03-01 ⋅ Group-IB ⋅ Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
Ransomware Uncovered 2020/2021
RansomEXX BazarBackdoor Buer Clop Conti DoppelPaymer Dridex Egregor IcedID Maze PwndLocker QakBot RansomEXX REvil Ryuk SDBbot TrickBot Zloader

2021-03-01 ⋅ AIR FORCE RESEARCH LABORATORY INFORMATION DIRECTORATE ⋅ TWO SIX LABS
Edge of the Art in Vulnerability Research

2021-03-01 ⋅ Trend Micro ⋅ Don Ovid Ladores
Povlsomware Ransomware Features Cobalt Strike Compatibility
Povlsomware

2021-03-01 ⋅ AWAKE ⋅ Jason Bevis
The Unseen One: Hades Ransomware Gang or Hafnium
Hades

2021-03-01 ⋅ Techtarget ⋅ Rob Wright
Ransomware negotiations: An inside look at the process
REvil

2021-03-01 ⋅ State Security Department of the Republic of Lithuania ⋅ State Security Department of the Republic of Lithuania
National Threat Assessment 2021

2021-03-01 ⋅ Dr.Web ⋅ Dr.Web
Study of the Spyder modularbackdoor for targeted attacks
Spyder

2021-03-01 ⋅ ⋅ CCN-CERT ⋅ CCN-CERT
Informe Código DañinoCCN-CERT ID-03/21: RyukRansomware
Ryuk

2021-03-01 ⋅ FireEye ⋅ FireEye, Mandiant
ACCELLION, INC. File Transfer Appliance (FTA) Security Assessment
DEWMODE

2021-03-01 ⋅ The Record ⋅ Catalin Cimpanu
First Fully Weaponized Spectre Exploit Discovered Online

2021-03-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Investigation into the state of Nim malware
BazarNimrod Cobalt Strike

2021-03-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Nimar Loader
BazarBackdoor BazarNimrod Cobalt Strike

2021-03-01 ⋅ Microsoft ⋅ Microsoft
Detect and defend against the recent nation-state cyber attack
SUNBURST