Malpedia Library

Click here to download all references as Bib-File.•

2019-02-01 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi, Vicky Ray
Tracking OceanLotus’ new Downloader, KerrDown
KerrDown

2019-01-31 ⋅ Lumen ⋅ Black Lotus Labs
A New Phase Of TheMoon
TheMoon

2019-01-31 ⋅ ⋅ ESTsecurity ⋅ Alyac
Lazarus APT Organization Attacks with Operation Extreme Job
CoreDN

2019-01-30 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Jungsoo An, Paul Rascagnères
Fake Cisco Job Posting Targets Korean Candidates
CoreDN JessieConTea

2019-01-30 ⋅ Cyberbit ⋅ Hod Gavriel
New Ursnif Malware Variant – a Stunning Matryoshka (Матрёшка)
ISFB

2019-01-30 ⋅ Samip Pokharel
Analysis of NetWiredRC trojan
NetWire RC

2019-01-30 ⋅ Bleeping Computer ⋅ Ionut Ilascu
New LockerGoga Ransomware Allegedly Used in Altran Attack
LockerGoga

2019-01-30 ⋅ Kaspersky Labs ⋅ Denis Legezo
Chafer used Remexi malware to spy on Iran-based foreign diplomatic entities
Remexi APT39

2019-01-29 ⋅ MITRE ⋅ MITRE ATT&CK
APT38
Lazarus Group

2019-01-29 ⋅ SophosLabs ⋅ Luca Nagy
Matrix: A Low-key Targeted Ransomware
Matrix Ransom

2019-01-29 ⋅ Github (eset) ⋅ ESET Research
OSX/Keydnap IoCs
Keydnap

2019-01-29 ⋅ FireEye ⋅ Andrew Thompson, Ben Read, Cristiana Brafman-Kittner, Nalani Fraser, Sanaz Yashar, Sarah Hawley, Yuri Rozhansky
APT39: An Iranian Cyber Espionage Group Focused on Personal Information
APT39

2019-01-28 ⋅ Minerva Labs ⋅ Asaf Aprozper, Gal Bitensky
AZORult: Now, as A Signed “Google Update”
Azorult

2019-01-28 ⋅ ESET Research ⋅ Juraj Jánošík
Russia hit by new wave of ransomware spam
Troldesh

2019-01-25 ⋅ Github (NozomiNetworks) ⋅ NozomiNetworks
Toolkit collection developed to help malware analysts dissecting and detecting the packer used by GreyEnergy samples.
GreyEnergy

2019-01-25 ⋅ CrowdStrike ⋅ Matt Dahl
Widespread DNS Hijacking Activity Targets Multiple Sectors
DNSpionage

2019-01-24 ⋅ Kaspersky ⋅ Victoria Vlasova, Vyacheslav Bogdanov
Razy in search of cryptocurrency
Razy

2019-01-24 ⋅ Kaspersky Labs ⋅ Kaspersky Lab ICS CERT
GreyEnergy’s overlap with Zebrocy
GreyEnergy Zebrocy

2019-01-24 ⋅ Reaqta ⋅ Reaqta
Silence group targeting Russian Banks via Malicious CHM
Silence Silence group

2019-01-24 ⋅ Cisco Talos ⋅ John Arneson
Cisco AMP tracks new campaign that delivers Ursnif
ISFB