Malpedia Library

Click here to download all references as Bib-File.•

2024-02-01 ⋅ Medium g0njxa ⋅ g0njxa
Installskey Rewind 2023
CrackedCantil

2024-02-01 ⋅ Securonix ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
Analysis and Detection of STEADY#URSA Attack Campaign Targeting Ukraine Military Dropping New Covert SUBTLE-PAWS PowerShell Backdoor
SUBTLE-PAWS

2024-02-01 ⋅ Bleeping Computer ⋅ Bill Toulas
PurpleFox malware infects thousands of computers in Ukraine
PurpleFox

2024-01-31 ⋅ IBM X-Force Exchange ⋅ IBM Security X-Force Team
CrackedCantil: A Malware Symphony Breakdown
CrackedCantil

2024-01-31 ⋅ AlienVault OTX ⋅ AlienVault
OTX Pulse - CrackedCantil: Malware Work Together
CrackedCantil

2024-01-31 ⋅ Trend Micro ⋅ Feike Hacquebord, Fernando Mercês
Pawn Storm Uses Brute Force and Stealth Against High-Value Targets
Mocky LNK Unidentified 114 (APT28 InfoStealer)

2024-01-31 ⋅ Department of Justice ⋅ Office of Public Affairs
U.S. Government Disrupts Botnet People’s Republic of China Used to Conceal Hacking of Critical Infrastructure
KV

2024-01-31 ⋅ Zscaler ⋅ Javier Vicente
Tracking 15 Years of Qakbot Development
QakBot

2024-01-30 ⋅ ANY.RUN ⋅ Lena (LambdaMamba)
CrackedCantil: A Malware Symphony Breakdown - PrivateLoader, Smoke, Lumma, RedLine, RisePro, Amadey, Stealc, Socks5Systemz, STOP
Amadey CrackedCantil Lumma Stealer PrivateLoader RedLine Stealer RisePro SmokeLoader Socks5 Systemz Stealc STOP

2024-01-30 ⋅ Bleeping Computer ⋅ Bill Toulas
Police disrupt Grandoreiro banking malware operation, make arrests
Grandoreiro

2024-01-30 ⋅ AT&T Cybersecurity ⋅ Peter Boyle
DarkGate malware delivered via Microsoft Teams - detection and response
DarkGate

2024-01-30 ⋅ K7 Security ⋅ Deepa B
Python’s Byte: The Rise of Scripted Ransomware

2024-01-30 ⋅ DCSO ⋅ DCSO CyTec
Reporting on Volt Typhoon’s “JDY” Botnet Administration Via Tor Sparks Questions

2024-01-30 ⋅ Mandiant ⋅ Diana Ion, Jae Young Kim, Muhammad Umair, Panagiotis Antoniou, Yash Gupta
Evolution of UNC4990: Uncovering USB Malware's Hidden Depths
QUIETBOARD Vetta Loader UNC4990

2024-01-29 ⋅ hacked.codes ⋅ Josh Terrill
Technical analysis of WinRAR zero-day malware and C2 protocol emulation

2024-01-29 ⋅ Aquasec ⋅ Asaf Eitani, Nitzan Yaakov
HeadCrab 2.0: Evolving Threat in Redis Malware Landscape
HeadCrab

2024-01-29 ⋅ SonicWall ⋅ Security News
Blackwood APT Group Has a New DLL Loader
NSPX30 Blackwood

2024-01-29 ⋅ Synacktiv ⋅ Theo Letailleur
KrustyLoader - Rust malware linked to Ivanti ConnectSecure compromises
KrustyLoader

2024-01-26 ⋅ Trendmicro ⋅ Hara Hiroaki, Masaoki Shoji, Nick Dai, Vickie Su, Yuka Higashi
Spot the Difference: An Analysis of the New LODEINFO Campaign by Earth Kasha
Anel Cobalt Strike LODEINFO NOOPDOOR

2024-01-26 ⋅ Ars Technica ⋅ Dan Goodin
The life and times of Cozy Bear, the Russian hackers who just hit Microsoft and HPE