Malpedia Library

Click here to download all references as Bib-File.•

2023-11-16 ⋅ YouTube (Swiss Cyber Storm) ⋅ Angelo Violetti
Resilience Rising: Countering the Threat Actors Behind Black Basta Ransomware
Black Basta

2023-11-14 ⋅ Lumen ⋅ Black Lotus Labs
Taking The Elevator Down To Ring 0
Elevator

2023-11-10 ⋅ Blackberry ⋅ Dmitry Bestuzhev
BiBi Wiper Used in the Israel-Hamas War Now Runs on Windows
BiBi

2023-11-06 ⋅ VMWare Carbon Black ⋅ Abe Schneider, Alan Ngo, Bria Beathley, Swee Lai Lee
Jupyter Rising: An Update on Jupyter Infostealer
solarmarker

2023-10-30 ⋅ eSentire ⋅ eSentire
Nitrogen Campaign 2.0: Reloads with Enhanced Capabilities Leading to ALPHV/BlackCat Ransomware
BlackCat Nitrogen Loader

2023-10-23 ⋅ SarlackLab ⋅ John Faria
Advice For Catching a RedLine Stealer
RedLine Stealer

2023-09-22 ⋅ Mandiant ⋅ Dan Black, Josh Atkins, Luke Jenkins
Backchannel Diplomacy: APT29’s Rapidly Evolving Diplomatic Phishing Operations
Brute Ratel C4 Cobalt Strike EnvyScout GraphDrop QUARTERRIG sRDI Unidentified 107 (APT29)

2023-08-26 ⋅ BushidoToken Blog ⋅ BushidoToken
Tracking Adversaries: Scattered Spider, the BlackCat affiliate
BlackLotus POORTRY

2023-08-17 ⋅ Lumen ⋅ Black Lotus Labs
No Rest For The Wicked: HiatusRAT Takes Little Time Off In A Return To Action
HiatusRAT

2023-07-27 ⋅ X (@BlackLotusLabs) ⋅ Black Lotus Labs
Tweet on update on AVrecon bot's migration to new infrastructure
AVrecon

2023-07-15 ⋅ MSSP Lab ⋅ cocomelonc
Malware source code investigation: BlackLotus - part 1
BlackLotus

2023-07-13 ⋅ Rapid7 Labs ⋅ Natalie Zargarov
Old Blackmoon Trojan, NEW Monetization Approach
KrBanker

2023-07-13 ⋅ MSSP Lab ⋅ cocomelonc
Malware analysis report: BlackCat ransomware
BlackCat BlackCat

2023-07-12 ⋅ Lumen ⋅ Black Lotus Labs
Routers From The Underground: Exposing AVrecon
AVrecon

2023-07-12 ⋅ Mandiant ⋅ Dan Black, Gabby Roncone
The GRU's Disruptive Playbook
CaddyWiper INDUSTROYER2 XakNet

2023-07-08 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
RomCom Threat Actor Suspected of Targeting Ukraine's NATO Membership Talks at the NATO Summit
ROMCOM RAT

2023-07-06 ⋅ Microsoft ⋅ Microsoft Incident Response
The five-day job: A BlackByte ransomware intrusion case study
BlackByte ExByte

2023-07-06 ⋅ Github (Helixo32) ⋅ Helixo32
NimBlackout
NimBlackout

2023-06-01 ⋅ Infinitum IT ⋅ Kerime Gencay
BlackCat Ransomware Analysis Report (Paywall)
BlackCat

2023-06-01 ⋅ vmware ⋅ Fae Carlisle
Carbon Black’s TrueBot Detection
Silence