Malpedia Library

Click here to download all references as Bib-File.•

2021-01-07 ⋅ CyberArk ⋅ Ben Cohen
Meet Oski Stealer: An In-depth Analysis of the Popular Credential Stealer
Oski Stealer

2021-01-07 ⋅ Palo Alto Networks Unit 42 ⋅ Brad Duncan
TA551: Email Attack Campaign Switches from Valak to IcedID
IcedID

2021-01-07 ⋅ Twitter (@campuscodi) ⋅ Catalin Cimpanu
Tweet on London's Hackney Council attacked by Pysa/Mespinoza ransomware
Mespinoza

2021-01-07 ⋅ Recorded Future ⋅ Insikt Group®
Aversary Infrastructure Report 2020: A Defender's View
Octopus pupy Cobalt Strike Empire Downloader Meterpreter PoshC2

2021-01-07 ⋅ Advanced Intelligence ⋅ Brian Carter, HYAS, Vitali Kremez
Crime Laundering Primer: Inside Ryuk Crime (Crypto) Ledger & Risky Asian Crypto Traders
Ryuk

2021-01-07 ⋅ ClearSky ⋅ ClearSky Research Team
Operation ‘Kremlin’
Unidentified 002 (Operation Kremlin)

2021-01-07 ⋅ AT&T ⋅ Fernando Martinez, Ofer Caspi
Malware using new Ezuri memory loader
Cephei

2021-01-06 ⋅ CISA ⋅ US-CERT
Supply Chain Compromise
SUNBURST

2021-01-06 ⋅ SecureCoding ⋅ SecureCoding
All About Doki Malware
Doki

2021-01-06 ⋅ Mimecast ⋅ Matthew Gardiner
How to Slam a Door on the Cutwail Botnet: Enforce DMARC
Cutwail

2021-01-06 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Hackers start exploiting the new backdoor in Zyxel devices

2021-01-06 ⋅ FBI ⋅ FBI
PIN Number 20210106-001: Egregor Ransomware Targets Businesses Worldwide, Attempting to Extort Businesses by Publicly Releasing Exfiltrated Data
Egregor QakBot

2021-01-06 ⋅ Trend Micro ⋅ Leandro Froes
Expanding Range and Improving Speed: A RansomExx Approach
RansomEXX

2021-01-06 ⋅ Trustwave ⋅ Diana Lopera
A Trump Sex Video? No, It's a RAT!
QRat

2021-01-06 ⋅ MITRE ⋅ MITRE ATT&CK
ATT&CK Navigator layer for UNC2452
SUNBURST

2021-01-06 ⋅ Github (SentinelLabs) ⋅ SentinelLabs
SolarWinds_Countermeasures
SUNBURST

2021-01-06 ⋅ Red Canary ⋅ Tony Lambert
Hunting for GetSystem in offensive security tools
Cobalt Strike Empire Downloader Meterpreter PoshC2

2021-01-06 ⋅ Department of Justice ⋅ Department of Justice
Department of Justice Statement on Solarwinds Update
SUNBURST

2021-01-06 ⋅ Malwarebytes ⋅ Hossein Jazi
Retrohunting APT37: North Korean APT used VBA self decode technique to inject RokRat
RokRAT

2021-01-06 ⋅ DomainTools ⋅ Joe Slowik
Holiday Bazar: Tracking a TrickBot-Related Ransomware Incident
BazarBackdoor TrickBot