Malpedia Library

Click here to download all references as Bib-File.•

2024-03-07 ⋅ Malware Traffic Analysis ⋅ Brad Duncan
2024-03-07 (THURSDAY): LATRODECTUS INFECTION LEADS TO LUMMA STEALER
Latrodectus Lumma Stealer

2024-03-06 ⋅ Proofpoint ⋅ Dusty Miller, Jake G, Selena Larson
TA4903: Actor Spoofs U.S. Government, Small Businesses in Phishing, BEC Bids
TA4903

2024-03-06 ⋅ BushidoToken ⋅ BushidoToken
Tracking Adversaries: UAC-0050, Cracking The DaVinci Code

2024-03-05 ⋅ Kroll ⋅ Dave Truman, George Glass, Keith Wojcieszek
TODDLERSHARK: ScreenConnect Vulnerability Exploited to Deploy BABYSHARK Variant
BabyShark

2024-03-05 ⋅ Team Cymru ⋅ S2 Research Team
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs?
Coper

2024-03-05 ⋅ CIP ⋅ paloalto Networks: Unit42, State Service of Special Communication and Information Protection of Ukraine (CIP)
Semi-Annual Chronicles of UAC-0006 Operations
SmokeLoader

2024-03-05 ⋅ Reliaquest ⋅ RELIAQUEST THREAT RESEARCH TEAM
Anxun and Chinese APT Activity
ShadowPad

2024-03-05 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Unknown Nim Loader using PSBypassCLM
Unidentified 115 (Nim Loader)

2024-03-04 ⋅ Securi ⋅ Denis Sinegubko
40 New Domains of Magecart Veteran ATMZOW Found in Google Tag Manager
magecart

2024-03-04 ⋅ Cleafy ⋅ Federico Valentini, Francesco Iubatti
On-Device Fraud on the rise: exposing a recent Copybara fraud campaign
Copybara

2024-03-04 ⋅ Logpoint ⋅ Anish Bogati
Inside DarkGate: Exploring the infection chain and capabilities
DarkGate

2024-03-04 ⋅ Proofpoint ⋅ Kelsey Merriman, Selena Larson, Tommy Madjar
TA577’s Unusual Attack Chain Leads to NTLM Data Theft

2024-03-04 ⋅ ⋅ Weixin ⋅ Hunting Shadow Lab
Shadow Hunting: Analysis of APT37’s attack activities against South Korea using North Korean political topics
RokRAT

2024-03-03 ⋅ OALabs ⋅ herrcore
GitHub Bug Used to Infect Game Hackers With Lua Malware
SmartLoader

2024-03-02 ⋅ Twitter (@SinghSoodeep) ⋅ Sudeep Singh
Tweet on WINELOADER targeting with German embassy themed lure
WINELOADER

2024-03-01 ⋅ Gatewatcher ⋅ Gatewatcher
CYBER THREATS SEMESTER REPORT (July - December 2023) (paywall)

2024-03-01 ⋅ Sekoia ⋅ Sekoia TDR
NoName057(16)’s DDoSia project: 2024 updates and behavioural shifts
Dosia

2024-03-01 ⋅ farghlymal github.io ⋅ Aziz Farghly
Taking a deep dive into SmokeLoader
SmokeLoader

2024-03-01 ⋅ HarfangLab ⋅ HarfangLab CTI
A Comprehensive Analysis of i-SOON’s Commercial Offering
ShadowPad Winnti

2024-03-01 ⋅ 0x0v1 ⋅ Ovi
APT37's ROKRAT HWP Object Linking and Embedding
RokRAT