Malpedia Library

Click here to download all references as Bib-File.•

2019-06-03 ⋅ SC Magazine ⋅ Doug Olenick
GandCrab ransomware operators put in retirement papers
Gandcrab

2019-05-23 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Nick Biasini
Sorpresa! JasperLoader targets Italy with a new bag of tricks
JasperLoader

2019-05-02 ⋅ Cisco Talos ⋅ Ashlee Benge, Nick Randolph
Qakbot levels up with new obfuscation techniques
QakBot

2019-04-25 ⋅ Cisco ⋅ Andrew Williams, Edmund Brumaghin, Nick Biasini
JasperLoader Emerges, Targets Italy with Gootkit Banking Trojan
JasperLoader

2019-03-20 ⋅ Cisco Talos ⋅ Nick Biasini
Ransomware or Wiper? LockerGoga Straddles the Line
LockerGoga

2019-02-20 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Matthew Molyett, Nick Biasini
Combing Through Brushaloader Amid Massive Detection Uptick
BrushaLoader

2018-12-21 ⋅ FireEye ⋅ Alex Orleans, Andrew Thompson, Geoff Ackerman, Nick Carr, Rick Cole
OVERRULED: Containing a Potentially Destructive Adversary
POWERTON PoshC2 pupy

2018-11-19 ⋅ FireEye ⋅ Andrew Thompson, Ben Withnell, Jonathan Leathery, Matthew Dunwoody, Michael Matonis, Nick Carr
Not So Cozy: An Uncomfortable Examination of a Suspected APT29 Phishing Campaign
Cobalt Strike

2018-11-06 ⋅ Twitter (@ItsReallyNick) ⋅ Nick Carr
Tweet on a GRIFFON sample
Griffon

2018-10-01 ⋅ FireEye ⋅ Katie Nickels, Regina Elwell
ATT&CKing FIN7
Bateleur BELLHOP Griffon ANTAK POWERPIPE POWERSOURCE HALFBAKED BABYMETAL Carbanak Cobalt Strike DNSMessenger DRIFTPIN PILLOWMINT SocksBot

2018-08-01 ⋅ FireEye ⋅ Barry Vengerik, Kimberly Goody, Nick Carr, Steve Miller
On the Hunt for FIN7: Pursuing an Enigmatic and Evasive Global Criminal Operation
BELLHOP POWERPIPE BABYMETAL SocksBot FIN7

2018-05-09 ⋅ Cisco Talos ⋅ Christopher Marczewski, Nick Biasini, Nick Lister
Gandcrab Ransomware Walks its Way onto Compromised Sites
Gandcrab

2017-12-07 ⋅ FireEye ⋅ Jacqueline O’Leary, Manish Sardiwal, Nalani Fraser, Nick Richard, Vincent Cannon, Yogesh Londhe
New Targeted Attack in the Middle East by APT34, a Suspected Iranian Threat Group, Using CVE-2017-11882 Exploit
OilRig

2017-10-26 ⋅ FireEye ⋅ Barry Vengerik, Ben Read, Brian Mordosky, Christopher Glyer, Ian Ahl, Matt Williams, Michael Matonis, Nick Carr
BACKSWING - Pulling a BADRABBIT Out of a Hat
EternalPetya

2017-10-24 ⋅ Cisco Talos ⋅ Nick Biasini
Threat Spotlight: Follow the Bad Rabbit
EternalPetya

2017-09-21 ⋅ FireEye ⋅ Nick Carr, Stuart Davis
APT33: New Insights into Iranian Cyber Espionage Group
APT33

2017-08-08 ⋅ SC Magazine ⋅ Doug Olenick
HBO breach accomplished with hard work by hacker, poor security practices by victim
Charming Kitten

2017-06-30 ⋅ FireEye ⋅ Daniel Bohannon, Nick Carr
Obfuscation in the Wild: Targeted Attackers Lead the Way in Evasion Techniques
FIN8

2017-05-24 ⋅ BrightTALK (FireEye) ⋅ Nick Carr
APT32: New Cyber Espionage Group
APT32

2017-05-14 ⋅ FireEye ⋅ Nick Carr
Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations
OceanLotus Cuegoe KOMPROGO SOUNDBITE APT32