Malpedia Library

Click here to download all references as Bib-File.•

2021-01-19 ⋅ HP ⋅ Patrick Schläpfer
Dridex Malicious Document Analysis: Automating the Extraction of Payload URLs
Dridex

2021-01-19 ⋅ Malwarebytes ⋅ Marcin Kleczynski
Malwarebytes targeted by Nation State Actor implicated in SolarWinds breach. Evidence suggests abuse of privileged access to Microsoft Office 365 and Azure environments

2021-01-19 ⋅ Github (fireeye) ⋅ FireEye
Mandiant Azure AD Investigator: Focusing on UNC2452 TTPs
SUNBURST

2021-01-19 ⋅ ⋅ Twitter (@jpcert_ac) ⋅ JPCERT/CC
Tweet on LODEINFO ver 0.47 spotted ITW targeting Japan
LODEINFO

2021-01-19 ⋅ Mandiant ⋅ Douglas Bienstock, Matthew McWhirt, Mike Burns, Nick Bennett
Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 (WHITE PAPER)

2021-01-19 ⋅ FireEye ⋅ Douglas Bienstock, Matthew McWhirt, Mike Burns, Nick Bennett
Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452

2021-01-19 ⋅ Checkpoint ⋅ Omer Ventura, Ori Hamama
FreakOut – Leveraging Newest Vulnerabilities for creating a Botnet
N3Cr0m0rPh

2021-01-19 ⋅ Trend Micro ⋅ Fernando Mercês, Stephen Hilt
VPNFilter Two Years Later: Routers Still Compromised
VPNFilter

2021-01-19 ⋅ Medium elis531989 ⋅ Eli Salem
Funtastic Packers And Where To Find Them
Get2 IcedID QakBot

2021-01-19 ⋅ ⋅ JPCERT/CC ⋅ Shusei Tomonaga
Tools used within the network invaded by attack group Lazarus

2021-01-18 ⋅ Arete ⋅ Adam Brown, Harold Rodriguez
Egregor: The Ghost of Soviet Bears Past Haunts On
Egregor

2021-01-18 ⋅ ⋅ Bundesamt für Verfassungsschutz ⋅ Bundesamt für Verfassungsschutz
BfV Cyber-Brief Nr. 01/2021 : Vorgehensweise von APT31
MimiKatz

2021-01-18 ⋅ Youtube ( AGDC Services) ⋅ AGDC Services
How To Reverse Engineer RC4 Crypto For Malware Analysis

2021-01-18 ⋅ Symantec ⋅ Threat Hunter Team
Raindrop: New Malware Discovered in SolarWinds Investigation
Cobalt Strike Raindrop SUNBURST TEARDROP

2021-01-18 ⋅ Arxiv ⋅ Daniele Sgandurra, Jason Gray, Lorenzo Cavallaro
Identifying Authorship Style in Malicious Binaries: Techniques, Challenges & Datasets

2021-01-18 ⋅ Twitter (@teamcymru) ⋅ Team Cymru
Tweet on APT36 CrimsonRAT C2
Crimson RAT

2021-01-18 ⋅ tccontre Blog ⋅ tcontre
Extracting Shellcode in ICEID .PNG Steganography
IcedID

2021-01-18 ⋅ guitmz blog ⋅ Guilherme Thomazi Bonicontro
Linux.Midrashim: Assembly x64 ELF virus
Midrashim

2021-01-18 ⋅ Bleeping Computer ⋅ Lawrence Abrams
IObit forums hacked to spread ransomware to its members
DeroHE

2021-01-18 ⋅ aaqeel01 ⋅ Ali Aqeel
Docx Files Template-Injection
Unidentified 003 (Gamaredon Downloader)