Malpedia Library

Click here to download all references as Bib-File.•

2025-08-13 ⋅ Gdata ⋅ Karsten Hahn
JustAskJacky: AI causes a Trojan Horse Comeback
TamperedChef

2025-08-12 ⋅ The New York Times ⋅ Adam Goldman, Glenn Thrush, Mattathias Schwartz
Russia Is Suspected to Be Behind Breach of Federal Court Filing System

2025-08-12 ⋅ bluecyber ⋅ Khắc Minh
Analysis of a ClickFix malware attack
Vidar

2025-08-12 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Jordyn Dunk
Malvertising campaign leads to PS1Bot, a multi-stage malware framework
PS1Bot

2025-08-12 ⋅ Netresec ⋅ Erik Hjelmvik
PureRAT = ResolverRAT = PureHVNC
PureRAT

2025-08-11 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick 49: abusing Azure DevOps REST API for covert data channels. Simple C examples.
AllaKore

2025-08-10 ⋅ cocomelonc ⋅ cocomelonc
MacOS hacking part 8: dlopen() code loading + finding target PIDs. Simple C (Intel, ARM) examples

2025-08-08 ⋅ K7 Security ⋅ Azhagan K M S
Silent Watcher: Dissecting Cmimai Stealer’s VBS Payload
Cmimai Stealer

2025-08-08 ⋅ Reverse The Malware ⋅ Diyar Saadi
Detecting and Identifying Hidden Processes (Rekall Edition)

2025-08-06 ⋅ Kaspersky ⋅ Dmitry Kalinin
Spyware that pretends to be an antivirus
LunaSpy

2025-08-06 ⋅ ANY.RUN ⋅ Mauro Eldritch
PyLangGhost RAT: Rising Stealer from Lazarus Group Striking Finance and Technology
PylangGhost GolangGhost

2025-08-06 ⋅ Silent Push ⋅ Silent Push
Unmasking SocGholish: Silent Push Untangles the Malware Web Behind the “Pioneer of Fake Updates” and Its Operator, TA569
FAKEUPDATES MintsLoader Parrot TDS Parrot TDS WebShell Raspberry Robin

2025-08-05 ⋅ Defentive ⋅ Defentive Threat Research
Lost in Translation: Threat Actors Use SEO Poisoning and Fake DeepL Sites to Distribute Gh0st RAT
Ghost RAT

2025-08-05 ⋅ The DFIR Report ⋅ The DFIR Report
From Bing Search to Ransomware: Bumblebee and AdaptixC2 Deliver Akira
AdaptixC2 Akira BumbleBee

2025-08-03 ⋅ Reverse The Malware ⋅ Diyar Saadi
One Click and You're Caught: HoneyFiles in Action

2025-08-02 ⋅ cocomelonc ⋅ cocomelonc
MacOS hacking part 7: Minimal Linux-style shellcode on macOS (Intel). Simple NASM (Intel) and C examples

2025-08-02 ⋅ Reverse The Malware ⋅ Diyar Saadi
Analysis of a Facebook Phishing Page

2025-08-01 ⋅ Infrawatch Research Team
Belarus-Linked DSLRoot Proxy Network Deploys Hardware in U.S. Residences, Including Military Homes

2025-08-01 ⋅ Nextron Systems ⋅ Pezier Pierre-Henri
Plague: A Newly Discovered PAM-Based Backdoor for Linux
Plague

2025-07-31 ⋅ Twitter (@JAMESWT_WT) ⋅ JamesWT
Tweet about BQTlock
BQTlock