Malpedia Library

Click here to download all references as Bib-File.•

2020-09-22 ⋅ vmware ⋅ Omar Elgebaly, Takahiro Haruyama
Detecting Threats in Real-time With Active C2 Information
Agent.BTZ Cobalt Strike Dacls NetWire RC PoshC2 Winnti

2020-09-22 ⋅ Sophos SecOps ⋅ Greg Iddon
MTR Casebook: Blocking a $15 million Maze ransomware attack
Maze

2020-09-22 ⋅ Youtube (Virus Bulletin) ⋅ Ignacio Sanmillan
Ramsay: A cyber-espionage toolkit tailored for air-gapped networks
Ramsay

2020-09-22 ⋅ Digital Shadows ⋅ Stefano De Blasi
DarkSide: The New Ransomware Group Behind Highly Targeted Attacks
DarkSide

2020-09-22 ⋅ ReversingLabs ⋅ Karlo Zanki
Taidoor - a truly persistent threat
taidoor Taidoor

2020-09-22 ⋅ FBI ⋅ FBI
Alert Number I-092220-PSA: Foreign Actors and Cybercriminals Likely to Spread Disinformation Regarding 2020 Election Results

2020-09-22 ⋅ Twitter (@Nocturnus) ⋅ Cybereason Nocturnus
Tweet on Outlaw Group using IRCBot, SSH bruteforce tool, port Scanner, and an XMRIG crypto miner for their hacking operation
PerlBot

2020-09-22 ⋅ Bleeping Computer ⋅ Ax Sharma
Russian hackers use fake NATO training docs to breach govt networks
Zebrocy APT28

2020-09-22 ⋅ Graphika ⋅ Ben Nimmo, C. Shawn Eib, Lea Ronzaud
Operation Naval Gazing: Facebook Takes Down Inauthentic Chinese Network

2020-09-22 ⋅ Facebook ⋅ Nathaniel Gleicher
Removing Coordinated Inauthentic Behavior

2020-09-22 ⋅ Trend Micro ⋅ Don Ladores, Raphael Centeno
Mispadu Banking Trojan Resurfaces
Mispadu

2020-09-22 ⋅ QuoScient ⋅ QuoIntelligence
APT28 Delivers Zebrocy Malware Campaign using NATO Theme as Lure
Zebrocy APT28

2020-09-22 ⋅ OSINT Fans ⋅ Gabor Szathmari
What Service NSW has to do with Russia?
TrickBot

2020-09-22 ⋅ ⋅ Heise Security ⋅ Olivia von Westernhagen
Uniklinik Düsseldorf: Ransomware "DoppelPaymer" soll hinter dem Angriff stecken
DoppelPaymer

2020-09-22 ⋅ Medium (@vishal_thakur) ⋅ Vishal Thakur
Grinju Downloader
Grinju Downloader

2020-09-21 ⋅ ⋅ Qianxin ⋅ RedDrip Team
Operation Tibo: A retaliatory targeted attack from the South Asian APT organization "Mo Luo Suo"
AsyncRAT Darktrack RAT

2020-09-21 ⋅ Cisco Talos ⋅ Joe Marshall, JON MUNSHAW, Nick Mavis
The art and science of detecting Cobalt Strike
Cobalt Strike

2020-09-21 ⋅ Trend Micro ⋅ Raphael Centeno
Cybercriminals Distribute Backdoor With VPN Installer
NjRAT

2020-09-20 ⋅ Check Point Research ⋅ Check Point Research
Rampant Kitten – An Iranian Espionage Campaign
HookInjEx TelAndExt TelB

2020-09-18 ⋅ KELA ⋅ Raveed Laeb, Victoria Kivilevich
The Initial Access Broker’s Toolbox – Remote Monitoring and Management