Malpedia Library

Click here to download all references as Bib-File.•

2022-12-21 ⋅ Group-IB ⋅ Artem Grischenko
Godfather: A banking Trojan that is impossible to refuse
Godfather

2022-12-20 ⋅ Twitter (@Gi7w0rm) ⋅ Gi7w0rm
Twitter posts discussing recent sighting of Laplas
LaplasClipper

2022-12-18 ⋅ SANS ISC ⋅ Guy Bruneau
Infostealer Malware with Double Extension
Agent Tesla

2022-12-15 ⋅ ISC ⋅ Brad Duncan
Google ads lead to fake software pages pushing IcedID (Bokbot)
IcedID

2022-12-08 ⋅ Cisco Talos ⋅ Tiago Pereira
Breaking the silence - Recent Truebot activity
Clop Cobalt Strike FlawedGrace Raspberry Robin Silence Teleport

2022-12-01 ⋅ mostwanted002
Malware Analysis and Triage Report : PirateStealer - Discord_beta.exe
PirateStealer

2022-11-21 ⋅ vmware ⋅ Threat Analysis Unit
Threat Analysis: Active C2 Discovery Using Protocol Emulation Part4 (Dacls, aka MATA)
Dacls

2022-11-17 ⋅ Cisco Talos ⋅ Chris Neal
Get a Loda This: LodaRAT meets new friends
Loda Kasablanka

2022-11-09 ⋅ Cisco Talos ⋅ Edmund Brumaghin
Threat Spotlight: Cyber Criminal Adoption of IPFS for Phishing, Malware Campaigns
Agent Tesla

2022-10-24 ⋅ Medium s2wlab ⋅ Lee Sebin, Shin Yeongjae
Unveil the evolution of Kimsuky targeting Android devices with newly discovered mobile malware
FastFire FastSpy

2022-09-08 ⋅ Cisco Talos ⋅ Asheer Malhotra, Jung soo An, Vitor Ventura
Lazarus and the tale of three RATs
MagicRAT MimiKatz VSingle YamaBot

2022-09-07 ⋅ Cisco Talos ⋅ Asheer Malhotra, Jung soo An, Vitor Ventura
MagicRAT: Lazarus’ latest gateway into victim networks
MagicRAT Tiger RAT

2022-08-30 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
Hacker Infrastructure Used in Cisco Breach Discovered Attacking a Top Workforce Management Corporation & an Affiliate of Russia’s Evil Corp Gang Suspected, Reports eSentire
Cobalt Strike FiveHands UNC2447

2022-08-30 ⋅ Cisco ⋅ Vanja Svajcer
ModernLoader delivers multiple stealers, cryptominers and RATs
Coinminer DCRat ModernLoader RedLine Stealer SapphireMiner SystemBC

2022-08-19 ⋅ SANS ISC ⋅ Brad Duncan
Brazil malspam pushes Astaroth (Guildma) malware
Astaroth

2022-08-19 ⋅ Uptycs ⋅ Nischay Hedge, Siddharth Sharma
Is Tox The New C&C Method For Coinminers?
Unidentified ELF 006 (Tox Backdoor)

2022-08-12 ⋅ SANS ISC ⋅ Brad Duncan
Monster Libra (TA551/Shathak) pushes IcedID (Bokbot) with Dark VNC and Cobalt Strike
Cobalt Strike DarkVNC IcedID

2022-08-10 ⋅ Cisco ⋅ Nick Biasini
Cisco Talos shares insights related to recent cyber attack on Cisco
Yanluowang UNC2447

2022-08-09 ⋅ Cisco ⋅ Onur Mustafa Erdogan
Raspberry Robin: Highly Evasive Worm Spreads over External Disks
Raspberry Robin

2022-08-04 ⋅ Cisco Talos ⋅ Arnaud Zobec, Azim Khodjibaev, Edmund Brumaghin, Matt Thaxton
Attackers leveraging Dark Utilities "C2aaS" platform in malware campaigns