Malpedia Library

Click here to download all references as Bib-File.•

2024-06-05 ⋅ ⋅ Sekoia ⋅ Charles Meslay
The reverse engineering of malicious code in the ITC - Analysis of the evolution of a chain of infection (Slides)
FlowCloud

2024-06-05 ⋅ S-RM ⋅ David Broom, Gavin Hull
Exmatter malware levels up: S-RM observes new variant with simultaneous remote code execution and data targeting
BlackCat BlackMatter Conti ExMatter LockBit REvil Ryuk

2024-06-05 ⋅ Cisco Talos ⋅ Cisco Talos
DarkGate switches up its tactics with new payload, email templates
DarkGate

2024-06-04 ⋅ Qianxin ⋅ Red Raindrop Team
Operation Veles: Decade-Long Espionage Targeting the Global Research and Education Sector
UTG-Q-008

2024-06-04 ⋅ Aquasec ⋅ Nitzan Yaakov
Muhstik Malware Targets Message Queuing Services Applications
Tsunami

2024-06-04 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0200: Targeted cyberattacks using DarkCrystal RAT and Signal as a trusted distribution vehicle (CERT-UA#9918)
DCRat

2024-06-03 ⋅ Securite360.net ⋅ Muffin
Unveiling Sharp Panda’s New Loader

2024-06-03 ⋅ SYGNIA ⋅ Sygnia Team
China-Nexus Threat Group ‘Velvet Ant’ Abuses F5 Load Balancers for Persistence
PlugX

2024-06-03 ⋅ Cyfox ⋅ Idan Malihi
BiBi Wiper: A Malware Analysis Amidst the Israel-Hamas-ISIS Conflict
BiBi

2024-06-03 ⋅ SpyCloud ⋅ James
Reversing Atomic macOS Stealer: Binaries, Backdoors & Browser Theft
AMOS

2024-06-03 ⋅ Binary Defense ⋅ Binary Defense, Shannon Mong
Wineloader – Analysis of the Infection Chain
WINELOADER

2024-06-03 ⋅ Sekoia ⋅ Pierre Le Bourhis, Quentin Bourgue, Sekoia TDR
PikaBot: a Guide to its Deep Secrets and Operations
Pikabot

2024-06-02 ⋅ Microsoft ⋅ Clint Watts
How Russia is trying to disrupt the 2024 Paris Olympic Games
Storm-1679

2024-06-01 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 28: RC4 payload encryption. Simple Nim example.

2024-05-31 ⋅ TEHTRIS ⋅ TEHTRIS
Ransomware spotted in active development phase: a successful early detection operation
CashRansomware

2024-05-31 ⋅ Cybersecurity Insiders ⋅ Bogdan Glushko
Proven Data Restores PowerHost’s VMware Backups After SEXi Ransomware Attack
SEXi SEXi

2024-05-30 ⋅ Cloudflare ⋅ Cloudforce One
Disrupting FlyingYeti's campaign targeting Ukraine
COOKBOX FlyingYeti

2024-05-30 ⋅ Recorded Future ⋅ Insikt Group
GRU’s BlueDelta Targets Key Networks in Europe with Multi-Phase Espionage Campaigns
Mocky LNK

2024-05-30 ⋅ Recorded Future ⋅ Insikt Group
GRU's BlueDelta Targets Key Networks in Europe with Multi-Phase Espionage Campaigns
Mocky LNK

2024-05-30 ⋅ Cloudflare ⋅ Cloudforce One
Disrupting FlyingYeti's campaign targeting Ukraine
FlyingYeti