Malpedia Library

Click here to download all references as Bib-File.•

2018-03-20 ⋅ Twitter (@bartblaze) ⋅ BartBlaze
Tweet on Unlock92 Ransomware
Unlock92

2018-03-20 ⋅ Contagiodump Blog ⋅ Mila Parkour
Rootkit Umbreon / Umreon - x86, ARM samples
Umbreon

2018-03-20 ⋅ Palo Alto Networks Unit 42 ⋅ Kyle Wilhoit, Ruchna Nigam
TeleRAT: Another Android Trojan Leveraging Telegram’s Bot API to Target Iranian Users
IRRat TeleRAT

2018-03-20 ⋅ CyberScoop ⋅ Chris Bing, Patrick Howell O'Neill
Kaspersky's 'Slingshot' report burned an ISIS-focused intelligence operation
Slingshot

2018-03-19 ⋅ hasherezade
Unpacking Ursnif
ISFB

2018-03-19 ⋅ Secrary ⋅ Lasha Khasaia
Reversing iBank Trojan [Injection Phase]
Simda

2018-03-14 ⋅ Malwarebytes Labs ⋅ hasherezade, Jérôme Segura, Vasilios Hioureas
Hermes ransomware distributed to South Koreans via recent Flash zero-day
Hermes

2018-03-14 ⋅ Symantec ⋅ Network Protection Security Labs, Security Response Attack Investigation Team
Inception Framework: Alive and Well, and Hiding Behind Proxies
Inception Framework

2018-03-14 ⋅ Threatpost ⋅ Tom Spring
New POS Malware PinkKite Takes Flight
AbaddonPOS

2018-03-13 ⋅ Palo Alto Networks Unit 42 ⋅ Alex Hinchliffe, Jen Miller-Osborn, Mike Harbison, Tom Lancaster
HenBox: The Chickens Come Home to Roost
HenBox

2018-03-13 ⋅ PhishLabs ⋅ Joshua Shilko
New Variant of BankBot Banking Trojan Ups Ante, Cashes Out on Android Users
Anubis

2018-03-13 ⋅ FireEye ⋅ Ben Read, Dileep Kumar Jallepalli, Sudeep Singh, Yogesh Londhe
Iranian Threat Group Updates Tactics, Techniques and Procedures in Spear Phishing Campaign
POWERSTATS MuddyWater

2018-03-13 ⋅ Kaspersky Labs ⋅ Denis Makrushin, Yury Namestnikov
Time of death? A therapeutic postmortem of connected medicine
PlugX

2018-03-12 ⋅ Github (herrcore) ⋅ Sergei Frankoff
Python decryptor for newer AdWind config file
AdWind

2018-03-09 ⋅ Kaspersky Labs ⋅ GReAT
Masha and these Bears - 2018 Sofacy Activity

2018-03-09 ⋅ Kaspersky Labs ⋅ Alexey Shulmin, Andrey Dolgushev, Sergey Yunakovsky, Vasily Berdnikov
The Slingshot APT
Slingshot

2018-03-09 ⋅ Adam Senft, Bill Marczak, Jakub Dalek, John Scott-Railton, Ron Deibert, Sarah McKune
Sandvine’s PacketLogic Devices Used to Deploy Government Spyware in Turkey and Redirect Egyptian Users to Affiliate Ads?
StrongPity

2018-03-09 ⋅ Kaspersky Labs ⋅ Alexey Shulmin, Andrey Dolgushev, Sergey Yunakovsky, Vasily Berdnikov
The Slingshot APT FAQ
Slingshot Slingshot

2018-03-09 ⋅ Kaspersky Labs ⋅ Alex Perekalin
Cloning chip-and-PIN cards: Brazilian job
Prilex

2018-03-09 ⋅ NCCIC ⋅ NCCIC
Malware Analysis Report Sharpknot
SHARPKNOT