Malpedia Library

Click here to download all references as Bib-File.•

2023-09-20 ⋅ SOCRadar ⋅ SOCRadar
Unmasking USDoD: The Enigma of the Cyber Realm
RansomVC USDoD

2023-09-20 ⋅ Check Point Research ⋅ Checkpoint Research
Behind the Scenes of BBTok: Analyzing a Banker’s Server Side Components
BBtok

2023-09-19 ⋅ Recorded Future ⋅ Insikt Group
Multi-year Chinese APT Campaign Targets South Korean Academic, Government, and Political Entities
Korlia Tonto Team

2023-09-19 ⋅ Checkpoint ⋅ Alexey Bukhteyev, Arie Olshtein
Unveiling the Shadows: The Dark Alliance between GuLoader and Remcos
CloudEyE Remcos

2023-09-19 ⋅ Medium (@DCSO_CyTec) ⋅ Johann Aydinbas
#ShortAndMalicious — DarkGate
DarkGate

2023-09-18 ⋅ The Record ⋅ Jonathan Greig
"Scattered Spider" group launches ransomware attacks while expanding targets in hospitality, retail
RedLine Stealer

2023-09-18 ⋅ Alpine Security ⋅ Borja Merino
HijackLoader Targets Hotels: A Technical Analysis
HijackLoader

2023-09-18 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who's Behind the 8Base Ransomware Website?
8Base

2023-09-18 ⋅ SentinelOne ⋅ Alex Delamotte
CapraTube | Transparent Tribe’s CapraRAT Mimics YouTube to Hijack Android Phones
CapraRAT Operation C-Major

2023-09-18 ⋅ Trend Micro ⋅ Jaromír Hořejší, Joseph Chen
Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement
SprySOCKS

2023-09-15 ⋅ paloalto Netoworks: Unit42 ⋅ Amer Elsad, Austin Dever, Kristopher Russo
Threat Group Assessment: Muddled Libra

2023-09-15 ⋅ Migeel.sk ⋅ Michal Strehovský
Reverse engineering natively-compiled .NET apps

2023-09-15 ⋅ CyberCX ⋅ Phill Moore, Suyash Tripathi, Yogesh Khatri, Zach Stanford
Weaponising VMs to bypass EDR – Akira ransomware
Akira

2023-09-14 ⋅ Sekoia ⋅ Livia Tibirna
Sekoia.io mid-2023 Ransomware Threat Landscape
8Base Akira Cactus Storm-1567

2023-09-14 ⋅ Deep instinct ⋅ Mark Vaitzman, Ron Ben Yizhak, Simon Kenin
Operation Rusty Flag – A Malicious Campaign Against Azerbaijanian Targets
Unidentified 110 (RustyFlag)

2023-09-13 ⋅ Seebug Paper ⋅ Nan, XWS
Analysis of the recent offensive operations conducted by North Korean APT groups
Opal Sleet

2023-09-12 ⋅ Sekoia ⋅ Livia Tibirna, Maxime A
The Transportation sector cyber threat overview
Cyber Partisans

2023-09-12 ⋅ Security Intelligence ⋅ Golo Mühr, Kat Metrick, Ole Villadsen
Email campaigns leverage updated DBatLoader to deliver RATs, stealers
DBatLoader

2023-09-12 ⋅ Zscaler ⋅ Sudeep Singh
A peek into APT36’s updated arsenal
ElizaRAT

2023-09-11 ⋅ Github (m4now4r) ⋅ m4n0w4r
Unveiling Qakbot Exploring one of the Most Active Threat Actors
QakBot