Malpedia Library

Click here to download all references as Bib-File.•

2020-10-06 ⋅ Malwarebytes ⋅ Hossein Jazi, Jérôme Segura
Release the Kraken: Fileless APT attack abuses Windows Error Reporting service

2020-10-06 ⋅ 360 netlab ⋅ JiaYu
HEH, a new IoT P2P Botnet going after weak telnet services

2020-10-06 ⋅ Talos ⋅ Paul Rascagnères, Vitor Ventura, Warren Mercer
PoetRAT: Malware targeting public and private sector in Azerbaijan evolves
Poet RAT

2020-10-06 ⋅ Trend Micro ⋅ Cedric Pernet
French companies Under Attack from Clever BEC Scam

2020-10-05 ⋅ Kaspersky ⋅ Igor Kuznetsov, Mark Lechtik, Yury Parshin
MosaicRegressor: Lurking in the Shadows of UEFI

2020-10-05 ⋅ Zawadi Done ⋅ Zawadi Done
DarkSide ransomware analysis
DarkSide

2020-10-05 ⋅ paloalto Networks Unit 42 ⋅ Nathaniel Quist
Black-T: New Cryptojacking Variant from TeamTnT

2020-10-05 ⋅ Kaspersky Labs ⋅ Igor Kuznetsov, Mark Lechtik
MosaicRegressor: Lurking in the Shadows of UEFI (Technical Details)

2020-10-05 ⋅ Kaspersky Labs ⋅ Igor Kuznetsov, Mark Lechtik
MosaicRegressor: Lurking in the Shadows of UEFI
MosaicRegressor

2020-10-05 ⋅ Juniper ⋅ Paul Kimayong
New pastebin-like service used in multiple malware campaigns
Agent Tesla LimeRAT RedLine Stealer

2020-10-03 ⋅ VB Localhost ⋅ Rintaro Koike, Shogo Hayashi, Takai Hajime
Unveiling the CryptoMimic
CageyChameleon SnatchCrypto

2020-10-03 ⋅ Youtube (L!NK) ⋅ LinkCabin
Malware Analysis: Stealer - Mutex Check, Stackstrings, IDA (Part 1)
Raccoon

2020-10-03 ⋅ Wikipedia ⋅ Wikpedia
Wikipedia Page: Maksim Yakubets
Dridex Feodo Evil Corp

2020-10-03 ⋅ Trend Micro ⋅ Cedric Pernet, Daniel Lunghi, Jaromír Hořejší, Kazuki Fujisawa
Earth Akhlut: Exploring the Tools, Tactics, and Procedures of an Advanced Threat Actor Operating a Large Infrastructure
Dexbia TypeHash

2020-10-03 ⋅ Medium vishal_thakur ⋅ Vishal Thakur
Grinju Downloader: Anti-analysis (on steroids) | Part 2
Grinju Downloader

2020-10-03 ⋅ Avira ⋅ Avira Protection Labs
TA505 targets the Americas in a new campaign
ServHelper

2020-10-02 ⋅ Health Sector Cybersecurity Coordination Center (HC3) ⋅ Health Sector Cybersecurity Coordination Center (HC3)
Report 202010021600: Recent Bazarloader Use in Ransomware Campaigns
BazarBackdoor Cobalt Strike Ryuk TrickBot

2020-10-02 ⋅ Lexfo ⋅ Lexfo
Lockbit analysis
LockBit

2020-10-02 ⋅ Twitter (@craiu) ⋅ Costin Raiu
Tweet about IAmTheKing / PowerPool actor naming
PowerPool

2020-10-02 ⋅ Check Point Research ⋅ Eyal Itkin, Itay Cohen
Graphology of an Exploit – Hunting for exploits by looking for the author’s fingerprints