Malpedia Library

Click here to download all references as Bib-File.•

2021-02-20 ⋅ Malpedia ⋅ Malpedia
Malpedia Website for Malware Family Team TNT
TeamTNT TeamTNT

2021-02-20 ⋅ NDSS ⋅ Alessandro Mantovani, Alexander Küchler, Davide Balzarotti, Leyla Bilge, Yufei Han
Does Every Second Count? Time-based Evolution of Malware Behavior in Sandboxes

2021-02-19 ⋅ K7 Security ⋅ Partheeban J
GitHub – Home to AsyncRAT Backdoor
AsyncRAT

2021-02-19 ⋅ Medium 0xthreatintel ⋅ 0xthreatintel
How to unpack SManager APT tool?
SManager

2021-02-19 ⋅ GEMINI ⋅ GEMINI
Alleged Hydra Market Operators Identified

2021-02-19 ⋅ THE NEW STACK ⋅ Dror Alon, Lior Sonntag
Behind the Scenes of the SunBurst Attack
SUNBURST

2021-02-19 ⋅ Lawfare Blog ⋅ Sonja Swanbeck
How to Understand Iranian Information Operations

2021-02-19 ⋅ The Record ⋅ Adam Janofsky, Timo Steffens
Cyber Attribution Is More Art Than Science. This Researcher Has a Plan to Change That

2021-02-19 ⋅ Palo Alto Networks Unit 42 ⋅ Dominik Reichel
IronNetInjector: Turla’s New Malware Loading Tool
Agent.BTZ IronNetInjector TurlaRPC

2021-02-18 ⋅ Symantec ⋅ Threat Hunter Team
Lazarus: Three North Koreans Charged for Financially Motivated Attacks
AppleJeus POOLRAT Unidentified macOS 001 (UnionCryptoTrader) AppleJeus Unidentified 077 (Lazarus Downloader)

2021-02-18 ⋅ PTSecurity ⋅ PTSecurity
https://www.ptsecurity.com/ww-en/analytics/antisandbox-techniques/
Poet RAT Gravity RAT Ketrican Okrum OopsIE Remcos RogueRobinNET RokRAT SmokeLoader

2021-02-18 ⋅ of0x.cc ⋅ of0x.cc
One thousand and one ways to copy your shellcode to memory (VBA Macros)

2021-02-18 ⋅ Bitdefender ⋅ Cristina Vatamanu, Gheorghe Adrian Schipor, Rickey Gevers
Iranian APT Makes a Comeback with “Thunder and Lightning” Backdoor and Espionage Combo
Infy Tonnerre

2021-02-18 ⋅ Red Canary ⋅ Tony Lambert
Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight
Silver Sparrow

2021-02-18 ⋅ JPCERT/CC ⋅ Kota Kino
Further Updates in LODEINFO Malware
LODEINFO

2021-02-18 ⋅ ⋅ NTT Security ⋅ Hiroki Hada
nccTrojan used in targeted attack by TA428 group against defense and aviation organizations
nccTrojan

2021-02-18 ⋅ Microsoft ⋅ MSRC Team
Microsoft Internal Solorigate Investigation – Final Update

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048E): AppleJeus: CoinGoTrade
AppleJeus POOLRAT AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048C): AppleJeus: Union Crypto
AppleJeus Unidentified macOS 001 (UnionCryptoTrader) AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048F): AppleJeus: Dorusio
AppleJeus AppleJeus Unidentified 077 (Lazarus Downloader)