Malpedia Library

Click here to download all references as Bib-File.•

2018-08-03 ⋅ JPCERT/CC ⋅ Takuya Endo, Yukako Uchida
Volatility Plugin for Detecting Cobalt Strike Beacon
Cobalt Strike

2018-08-02 ⋅ Sophos Naked Security ⋅ Mark Stockley
How to defend yourself against SamSam ransomware
SamSam

2018-08-02 ⋅ ComputerWeekly ⋅ Warwick Ashford
Three Carbanak cyber heist gang members arrested
Cobalt FIN7

2018-08-02 ⋅ Palo Alto Networks Unit 42 ⋅ David Fuertes, Josh Grunzweig, Kyle Wilhoit, Robert Falcone
The Gorgon Group: Slithering Between Nation State and Cybercrime
Loki Password Stealer (PWS) Nanocore RAT NjRAT Quasar RAT Remcos Revenge RAT

2018-08-02 ⋅ David Fuertes, Josh Grunzweig, Kyle Wilhoit, Robert Falcone
The Gorgon Group: Slithering Between Nation State and Cybercrime
The Gorgon Group

2018-08-01 ⋅ SophosLabs ⋅ Andrew Brandt, Claire Mackenzie, Dorka Palotay, Hajnalka Kope, Luca Nagy, Mark Stockley, Peter Mackenzie, Simon Porter
SamSam: The (Almost) Six Million Dollar Ransomware
SamSam

2018-08-01 ⋅ Kryptos Logic ⋅ Kryptos Logic
Inside Look at Emotet's Global Victims and Malspam Qakbot Payloads
Emotet

2018-08-01 ⋅ FireEye ⋅ Barry Vengerik, Kimberly Goody, Nick Carr, Steve Miller
On the Hunt for FIN7: Pursuing an Enigmatic and Evasive Global Criminal Operation
BELLHOP POWERPIPE BABYMETAL SocksBot FIN7

2018-08-01 ⋅ CrowdStrike ⋅ Paul Moon
Arrests Put New Focus on CARBON SPIDER Adversary Group
FIN7

2018-07-31 ⋅ Sophos Naked Security ⋅ Mark Stockley
SamSam: The (almost) $6 million ransomware
SamSam

2018-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi, Vicky Ray
Bisonal Malware Used in Attacks Against Russia and South Korea
Korlia

2018-07-31 ⋅ Github (JPCERTCC) ⋅ JPCERT/CC
Scanner for CobaltStrike
Cobalt Strike

2018-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi, Vicky Ray
Bisonal Malware Used in Attacks Against Russia and South Korea

2018-07-29 ⋅ Vitali Kremez Blog ⋅ Vitali Kremez
Let's Learn: In-Depth Reversing of Qakbot "qbot" Banker Part 1
QakBot

2018-07-29 ⋅ Sophos ⋅ Felix Weyne
AdKoob information thief targets Facebook ad purchase info
AdKoob

2018-07-28 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
New Underminer Exploit Kit Discovered Pushing Bootkits and CoinMiners
Hidden Bee

2018-07-27 ⋅ SystemTek ⋅ SystemTek
Luoxk Malware – Exploiting CVE-2018-2893
luoxk

2018-07-27 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone, Tom Lancaster
New Threat Actor Group DarkHydrus Targets Middle East Government
RogueRobin DarkHydrus

2018-07-26 ⋅ Accenture Security ⋅ Bart Parys, Michael Yip
GOLDFIN: A Persistent Campaign Targeting CIS Countries with SOCKSBOT
SocksBot

2018-07-26 ⋅ IEEE Symposium on Security and Privacy (SP) ⋅ Alex C. Snoeren, Damon McCoy, Danny Yuxing Huang, Elie Bursztein, Jonathan Levin, Kirill Levchenko, Kylie McRoberts, Luca Invernizzi, Maxwell Matthaios Aliapoulios, Vector Guo Li
Tracking Ransomware End-to-end
Cerber Locky WannaCryptor