Malpedia Library

Click here to download all references as Bib-File.•

2020-12-02 ⋅ Red Canary ⋅ twitter (@redcanary)
Tweet on increased #Qbot activity delivering Cobalt Strike & #Egregor ransomware
Cobalt Strike Egregor QakBot

2020-12-02 ⋅ GoSecure ⋅ Masarah Paquet-Clouston
Deep Dive into an Obfuscation-as-a-Service for Android Malware
Geost

2020-12-02 ⋅ SentinelOne ⋅ Phil Stokes
APT32 Multi-stage macOS Trojan Innovates on Crimeware Scripting Technique
OceanLotus

2020-12-02 ⋅ RiskIQ ⋅ Team RiskIQ
‘Shadow Academy’ Targets 20 Universities Worldwide

2020-12-02 ⋅ Kryptos Logic ⋅ Jamie Hankins
Automated string de-gobfuscation
Blackrota

2020-12-02 ⋅ DomainTools ⋅ Joe Slowik
Identifying Network Infrastructure Related to a World Health Organization Spoofing Campaign
Azorult Glupteba

2020-12-02 ⋅ Aqua ⋅ Assaf Morag, Idan Revivo
Threat Alert: Fileless Malware Executing in Containers
Tsunami

2020-12-02 ⋅ ESET Research ⋅ Matthieu Faou
Turla Crutch: Keeping the “back door” open
Crutch Gazer Turla

2020-12-01 ⋅ ⋅ LAC ⋅ Yoshihiro Ishikawa
[Urgent Report] Targeted attack by "SigLoader" that exploits Microsoft's digital signature file confirmed
SigLoader

2020-12-01 ⋅ Qianxin ⋅ Qi Anxin Threat Intelligence Center
Blade Eagle Group - Targeted attack group activities circling the Middle East and West Asia's cyberspace revealed
SpyNote BladeHawk

2020-12-01 ⋅ Juniper ⋅ Paul Kimayong
DarkIRC bot exploits recent Oracle WebLogic vulnerability
DarkIRC

2020-12-01 ⋅ FireEye ⋅ FireEye
Solarwinds Breach Resource Center
SUNBURST

2020-12-01 ⋅ Group-IB ⋅ Group-IB, Oleg Skulkin, Roman Rezvukhin, Semyon Rogachev
Egregor ransomware: The legacy of Maze lives on
Egregor QakBot

2020-12-01 ⋅ 360.cn ⋅ jindanlong
Hunting Beacons
Cobalt Strike

2020-12-01 ⋅ Intel 471 ⋅ Intel 471
Steal, then strike: Access merchants are first clues to future ransomware attacks
DoppelPaymer

2020-12-01 ⋅ FireEye ⋅ James T. Bennett
Using Speakeasy Emulation Framework Programmatically to Unpack Malware

2020-12-01 ⋅ FREE RUSSIA FOUNDATION ⋅ Catherine A. Fitzpatrick, Michael Weiss
Aquarium Leaks. Inside the GRU’S Psychological Warfare Program

2020-12-01 ⋅ mez0.cc ⋅ mez0
Cobalt Strike PowerShell Execution
Cobalt Strike

2020-12-01 ⋅ sonatype ⋅ Ax Sharma
There’s a RAT in my code: new npm malware with Bladabindi trojan spotted
NjRAT

2020-12-01 ⋅ Talos ⋅ Adam Pridgen, Vanja Svajcer
Xanthe - Docker aware miner
Xanthe