Malpedia Library

Click here to download all references as Bib-File.•

2024-02-13 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Peter Girnus, Simon Zuckerbraun
Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day
DarkMe

2024-02-12 ⋅ Estrellas's Blog ⋅ Otávio M.
Unveiling custom packers: A comprehensive guide
Dridex Simda

2024-02-12 ⋅ Palo Alto Networks Unit 42 ⋅ Dan Yashnik, Lior Rochberger
Diving Into Glupteba's UEFI Bootkit
Glupteba

2024-02-12 ⋅ VenzoV
WikiLoader "notepad" part 2 - bingmaps.dll & explorer.exe injection
WikiLoader

2024-02-12 ⋅ HelpNetSecurity ⋅ Zeljka Zorz
Decryptor for Rhysida ransomware is available!
Rhysida

2024-02-12 ⋅ Zscaler ⋅ Nikolaos Pantazopoulos
The (D)Evolution of Pikabot
Pikabot

2024-02-11 ⋅ Estrellas's Blog ⋅ Otávio M.
Unpacking an Emotet trojan
Emotet

2024-02-10 ⋅ Nofix.re ⋅ Nofix
KrustyLoader - About stripped Rust symbol recovery
KrustyLoader

2024-02-09 ⋅ Hunt.io ⋅ Michael R
Tracking ShadowPad Infrastructure Via Non-Standard Certificates
ShadowPad

2024-02-09 ⋅ Department of Justice ⋅ Office of Public Affairs
International Cybercrime Malware Service Dismantled by Federal Authorities: Key Malware Sales and Support Actors in Malta and Nigeria Charged in Federal Indictments
Ave Maria

2024-02-09 ⋅ YouTube (Invoke RE) ⋅ Josh Reynolds
Analyzing and Unpacking Qakbot Using Binary Ninja Automation Part 2
QakBot

2024-02-09 ⋅ Censys ⋅ Censys, Embee_research
A Beginners Guide to Tracking Malware Infrastructure
AsyncRAT BianLian Cobalt Strike QakBot

2024-02-09 ⋅ K7 Security ⋅ Suresh Reddy
The Phoenix Rises Again

2024-02-08 ⋅ Cisco Talos ⋅ Cisco Talos
New Zardoor backdoor used in long-term cyber espionage operation targeting an Islamic organization
HTran reGeorg Venom Proxy ZarDoor

2024-02-08 ⋅ K7 Security ⋅ Uma Madasamy
Unmasking-the-dot-stealer

2024-02-08 ⋅ ANALYST1 ⋅ Anastasia Sentsova, Jon DiMaggio
“This Forum is a Bunch of Communists and They Set Me Up”, LockBit Spills the Tea Regarding Their Recent Ban on Russian-Speaking Forums
LockBit

2024-02-08 ⋅ YouTube (Embee Research) ⋅ Embee_research
Cobalt Strike Decoding and C2 Extraction - 3 Minute Malware Analysis Speedrun
Cobalt Strike

2024-02-07 ⋅ Check Point Research ⋅ Check Point Research
Raspberry Robin Keeps Riding the Wave of Endless 1-Days
Raspberry Robin

2024-02-07 ⋅ Lumen ⋅ Black Lotus Labs
KV-Botnet: Don’t call it a Comeback
KV

2024-02-07 ⋅ Medium s2wlab ⋅ Jiho Kim, Sebin Lee
Kimsuky disguised as a Korean company signed with a valid certificate to distribute Troll Stealer
AlphaSeed Appleseed Troll Stealer