Malpedia Library

Click here to download all references as Bib-File.•

2019-11-18 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
REWTERZ THREAT ALERT – IRANIAN APT USES JOB SCAMS TO LURE TARGETS
PoshC2

2019-11-11 ⋅ ⋅ PTSecurity ⋅ PT ESC Threat Intelligence
Operation TA505, part four. Twins

2019-11-06 ⋅ ⋅ Heise Security ⋅ Thomas Hungenberg
Emotet, Trickbot, Ryuk – ein explosiver Malware-Cocktail
Emotet Ryuk TrickBot

2019-11-04 ⋅ ⋅ Tencent ⋅ Tencent Security Mikan TIC
APT attack group "Higaisa" attack activity disclosed
Ghost RAT Higaisa

2019-11-01 ⋅ Dodge This Security ⋅ Dodge This Security
Hancitor. Evasive new waves, and how COM objects can use Cached Credentials for Proxy Authentication
Hancitor

2019-10-31 ⋅ PTSecurity ⋅ PTSecurity
Calypso APT: new group attacking state institutions
BYEBY FlyingDutchman Hussar PlugX

2019-10-24 ⋅ MeltX0R Security ⋅ MeltX0R
10/24/2019 - APT28: Targeted attacks against mining corporations in Kazakhstan
Zebrocy

2019-10-19 ⋅ Acronis ⋅ Acronis Security
HILDACRYPT: A Ransomware Newcomer Hits Backup and Anti-virus Solutions
HILDACRYPT

2019-10-18 ⋅ NTT ⋅ NTT Security
TrickBot variant “Anchor_DNS” communicating over DNS
Anchor

2019-09-20 ⋅ Canadian Centre for Cyber Security ⋅ Canadian Centre for Cyber Security
TFlower Ransomware Campaign
TFlower

2019-09-18 ⋅ Symantec ⋅ Security Response Attack Investigation Team
Tortoiseshell Group Targets IT Providers in Saudi Arabia in Probable Supply Chain Attacks
SysKit Tortoiseshell

2019-08-29 ⋅ Security Intelligence ⋅ Joey Victorino, Kevin Henson, Melissa Frydrych, Ole Villadsen
More_eggs, Anyone? Threat Actor ITG08 Strikes Again
More_eggs FIN6

2019-08-24 ⋅ Persianov on Security ⋅ Sveatoslav Persianov
Windows worms. Forbix worm analysis
forbiks

2019-08-20 ⋅ ⋅ EST Security ⋅ EST Security
Lazarus Continues 'Movie Coin' Campaign Disguised as Calling Document Request

2019-08-19 ⋅ ⋅ EST Security ⋅ East Security Response Center
Konni APT organization emerges as an attack disguised as Russian document
Konni

2019-08-12 ⋅ Kindred Security ⋅ Kindred Security
An Overview of Public Platform C2’s
HTML5 Encoding LOWBALL Makadocs MiniDuke RogueRobinNET RokRAT

2019-08-05 ⋅ security.neurolabs ⋅ Marcos Alvares
Smokeloader's Hardcoded Domains - Sneaky Third Party Vendor or Cheap Buyer?
SmokeLoader

2019-08-01 ⋅ ClearSky ⋅ ClearSky Cyber Security
2019 H1 Cyber Events Summary Report
EVILNUM Cardinal RAT SappyCache

2019-07-24 ⋅ Intrusiontruth ⋅ Intrusiontruth
APT17 is run by the Jinan bureau of the Chinese Ministry of State Security
BLACKCOFFEE

2019-07-16 ⋅ G Data ⋅ G DATA Security Lab
Analysis: Server-side polymorphism & PowerShell backdoors
Rozena