Malpedia Library

Click here to download all references as Bib-File.•

2021-02-08 ⋅ Checkpoint ⋅ Checkpoint Research, Safebreach Labs
After Lightning Comes Thunder
Infy Tonnerre

2021-02-08 ⋅ GRNET CERT ⋅ Dimitris Kolotouros, Marios Levogiannis
Reverse engineering Emotet – Our approach to protect GRNET against the trojan
Emotet

2021-02-08 ⋅ US-CERT ⋅ US-CERT
Malware Analysis Report (AR21-039B): MAR-10320115-1.v1 - TEARDROP
TEARDROP

2021-02-08 ⋅ US-CERT ⋅ US-CERT
Malware Analysis Report (AR21-039A): SUNBURST
SUNBURST

2021-02-08 ⋅ Medium Sebdraven ⋅ sebdraven
Babuk is distributed packed
Babuk

2021-02-08 ⋅ Checkpoint ⋅ Check Point Research
Domestic Kitten – An Inside Look at the Iranian Surveillance Operations
FurBall Domestic Kitten

2021-02-07 ⋅ Technical Blog of Ali Aqeel ⋅ Ali Aqeel
Dridex Malware Analysis
Dridex

2021-02-07 ⋅ Bleeping Computer ⋅ Lawrence Abrams
New phishing attack uses Morse code to hide malicious URLs

2021-02-06 ⋅ ⋅ Clairvoyance Security Lab ⋅ Advanced threat research team
Mo Luoxiu (Confucius) organizes a new round of secret theft attacks on South Asian military enterprises
Ave Maria

2021-02-06 ⋅ Medium mariohenkel ⋅ Mario Henkel
Decrypting AzoRult traffic for fun and profit
Azorult

2021-02-05 ⋅ Silent Push ⋅ Ken
Behavior Clustering just got easier using new characteristics.

2021-02-05 ⋅ Morphisec ⋅ Nadav Lorber
CinaRAT Resurfaces with New Evasive Tactics and Techniques
Quasar RAT

2021-02-05 ⋅ Palo Alto Networks Unit 42 ⋅ Efi Barkayev, Gal De Leon, Nadav Markus
Exploits in the Wild for WordPress File Manager RCE Vulnerability (CVE-2020-25213)
Kinsing

2021-02-05 ⋅ Trend Micro ⋅ Don Ovid Ladores, Junestherry Salvador, Llalum Victoria, Monte de Jesus, Nikko Tamana, Raphael Centeno
New in Ransomware: Seth-Locker, Babuk Locker, Maoloa, TeslaCrypt, and CobraLocker
Babuk TeslaCrypt

2021-02-05 ⋅ Twitter (@8th_grey_owl) ⋅ 8thGreyOwl
Tweet on CALMTHORN, used by Tonto Team
CALMTHORN

2021-02-05 ⋅ EpicTurla ⋅ Juan Andrés Guerrero-Saade
Voltron STA The curious case of 0xFancyFilter
fancyfilter MISTYVEAL Regin

2021-02-05 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Microsoft warns of increasing OAuth Office 365 phishing attacks

2021-02-05 ⋅ Team Cymru ⋅ David Monnier
Kobalos Malware Mapping Potentially Impacted Networks and IP Address Mapping
Kobalos

2021-02-04 ⋅ Yoroi ⋅ Luca Mella, Luigi Martire
Connecting the dots inside the Italian APT Landscape

2021-02-04 ⋅ Bitdefender ⋅ Bogdan Botezatu
Fonix Ransomware Decryptor
FONIX