Malpedia Library

2020-06-25 ⋅ CrowdStrike ⋅ Umesh Wanve
GuLoader: Peering Into a Shellcode-based Downloader
CloudEyE

2020-06-25 ⋅ Trustwave ⋅ Trustwave SpiderLabs
The Golden Tax Department and Emergence of GoldenSpy Malware
GoldenSpy

2020-06-25 ⋅ Malwarebytes ⋅ Jérôme Segura
Web skimmer hides within EXIF metadata, exfiltrates credit cards via image files
magecart

2020-06-25 ⋅ Check Point Research ⋅ Liron Yosefian, Ori Hamama
DarkCrewBot – The Return of the Bot Shop Crew

2020-06-25 ⋅ Anomali ⋅ Gage Mele, Parthiban Rajendran
Unknown China-Based APT Targeting Myanmarese Entities

2020-06-25 ⋅ Trustwave ⋅ Brian Hussey
The Golden Tax Department and the Emergence of GoldenSpy Malware
GoldenSpy

2020-06-25 ⋅ Elastic ⋅ Daniel Stepanic, Samir Bousseaden
A close look at the advanced techniques used in a Malaysian-focused APT campaign
DADSTACHE APT40

2020-06-25 ⋅ Medium CSIS Techblog ⋅ Aleksejs Kuprins
The RoamingMantis Group’s Expansion to European Apple Accounts and Android Devices
FakeSpy FunkyBot MoqHao

2020-06-24 ⋅ ClearSky ⋅ ClearSky Research Team
CryptoCore Group : A Threat Actor Targeting Cryptocurrency Exchanges
CageyChameleon

2020-06-24 ⋅ ClearSky ⋅ ClearSky Research Team
CryptoCore: A Threat Actor Targeting Cryptocurrency Exchanges
CageyChameleon

2020-06-24 ⋅ CyberScoop ⋅ Shannon Vavra
Hackers are still running coronavirus-related campaigns, CrowdStrike warns
TRAVELING SPIDER

2020-06-24 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
DropboxAES Remote Access Trojan

2020-06-24 ⋅ Sophos Naked Security ⋅ Paul Ducklin
Glupteba - the malware that gets secret messages from the Bitcoin blockchain
Glupteba

2020-06-24 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
BRONZE VINEWOOD Uses HanaLoader to Target Government Supply Chain
APT31

2020-06-24 ⋅ Counter Threat Unit ResearchTeam
BRONZE VINEWOOD Targets Supply Chains
MimiKatz Trochilus RAT APT31

2020-06-24 ⋅ Morphisec ⋅ Arnold Osipov
Obfuscated VBScript Drops Zloader, Ursnif, Qakbot, Dridex
Dridex ISFB QakBot Zloader

2020-06-24 ⋅ Kaspersky Labs ⋅ Boris Larin
Magnitude exploit kit - evolution

2020-06-24 ⋅ Marco Ramilli's Blog ⋅ Marco Ramilli
Is upatre downloader coming back ?
Upatre

2020-06-24 ⋅ Twitter (@struppigel) ⋅ Karsten Hahn
Tweet on DiscordTokenStealer

2020-06-24 ⋅ Sophos Labs ⋅ Andrew Brandt
Glupteba malware hides in plain sight
Glupteba