Malpedia Library

2021-12-23 ⋅ ⋅ SCILabs ⋅ SCILabs
Cyber Threat Profile MALTEIRO
Mispadu Malteiro

2021-12-23 ⋅ vmware ⋅ Threat Analysis Unit
Introducing DARTH: Distributed Analysis for Research and Threat Hunting

2021-12-22 ⋅ Threatray ⋅ Markel Picado Ortiz
Establishing the TigerRAT and TigerDownloader Malware Families
TigerLite Tiger RAT

2021-12-17 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam, Secureworks Incident Response Team
noPac: A Tale of Two Vulnerabilities That Could End in Ransomware

2021-12-16 ⋅ Avast Decoded ⋅ Threat Intelligence Team
Avast Finds Backdoor on US Government Commission Network
Operation Red Signature

2021-12-16 ⋅ Symantec ⋅ Threat Hunter Team
Noberus: Technical Analysis Shows Sophistication of New Rust-based Ransomware
BlackCat

2021-12-16 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: Warzone RAT Breeds a Litter of ScriptKiddies
Ave Maria

2021-12-15 ⋅ Security Intelligence ⋅ IBM SECURITY X-FORCE
Nation State Threat Group Targets Airline with Aclip Backdoor

2021-12-15 ⋅ Zscaler ⋅ Rubin Azad
ThreatLabz analysis - Log4Shell CVE-2021-44228 Exploit Attempts
Kinsing Mirai

2021-12-14 ⋅ Symantec ⋅ Threat Hunter Team
Espionage Campaign Targets Telecoms Organizations across Middle East and Asia
MimiKatz

2021-12-11 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team, Microsoft Threat Intelligence Center (MSTIC)
Guidance for preventing, detecting, and hunting for exploitation of the Log4j 2 vulnerability
Khonsari NightSky BRONZE STARLIGHT

2021-12-11 ⋅ Symantec ⋅ Threat Hunter Team
Apache Log4j Zero-Day Being Exploited in the Wild
Kaiten

2021-12-09 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
A closer look at Qakbot’s latest building blocks (and how to knock them down)
QakBot

2021-12-07 ⋅ Mandiant ⋅ Jake Nicastro, Nick Richard, Rufus Brown, Van Ta
FIN13: A Cybercriminal Threat Actor Focused on Mexico
jspRAT win.rekoobe FIN13

2021-12-07 ⋅ sysdig ⋅ Alberto Pellitteri
Threat news: TeamTNT stealing credentials using EC2 Instance Metadata
TeamTNT

2021-12-07 ⋅ Volexity ⋅ Volexity Threat Research
XE Group – Exposed: 8 Years of Hacking & Card Skimming for Profit

2021-12-07 ⋅ Google ⋅ Google Threat Analysis Group, Luca Nagy, Shane Huntley
Disrupting the Glupteba operation
Glupteba

2021-12-06 ⋅ Microsoft ⋅ Microsoft Digital Security Unit (DSU), Microsoft Threat Intelligence Center (MSTIC)
NICKEL targeting government organizations across Latin America and Europe
MimiKatz

2021-12-06 ⋅ Mandiant ⋅ Ashraf Abdalhalim, Ben Read, Doug Bienstock, Gabriella Roncone, Jonathan Leathery, Josh Madeley, Juraj Sucik, Luis Rocha, Luke Jenkins, Manfred Erjak, Marius Fodoreanu, Microsoft Detection and Response Team (DART), Microsoft Threat Intelligence Center (MSTIC), Mitchell Clarke, Parnian Najafi, Sarah Hawley, Wojciech Ledzion
Suspected Russian Activity Targeting Government and Business Entities Around the Globe (UNC2452)
Cobalt Strike CryptBot

2021-12-02 ⋅ Google ⋅ Google Threat Analysis Group, Shane Huntley
TAG Bulletin: Q4 2021