Malpedia Library

Click here to download all references as Bib-File.•

2020-11-20 ⋅ DomainTools ⋅ Black Lotus Labs, Joe Slowik, Lumen
Current Events to Widespread Campaigns: Pivoting from Samples to Identify Activity

2020-11-20 ⋅ Bleeping Computer ⋅ Lawrence Abrams
LightBot: TrickBot’s new reconnaissance malware for high-value targets
LightBot TrickBot

2020-11-20 ⋅ F-Secure Labs ⋅ Riccardo Ancarani
Detecting Cobalt Strike Default Modules via Named Pipe Analysis
Cobalt Strike

2020-11-20 ⋅ ⋅ 360 netlab ⋅ JiaYu
Blackrota, a highly obfuscated backdoor developed by Go
Cobalt Strike

2020-11-19 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
Rewterz Threat Alert – Common Raven – IOCs
BatchWiper Common Raven

2020-11-19 ⋅ ioactive ⋅ Corey Thuen
Hiding in the Noise

2020-11-19 ⋅ FireEye ⋅ Alyssa Rahman, Andrew Oliveau, Brett Hawkins
Purgalicious VBA: Macro Obfuscation With VBA Purging

2020-11-19 ⋅ GEMINI ⋅ GEMINI
Chinese Scam Shops Lure Black Friday Shoppers

2020-11-19 ⋅ Cofense ⋅ Kyle Duncan
Threat Actor Utilizes COVID-19 Uncertainty to Target Users

2020-11-19 ⋅ Cybereason ⋅ Assaf Dahan, Tom Fakterman
Cybereason vs. MedusaLocker Ransomware
MedusaLocker

2020-11-19 ⋅ Armorblox ⋅ Arjun Sambamoorthy
OK Google, Build Me a Phishing Campaign

2020-11-19 ⋅ Threatpost ⋅ Elizabeth Montalbano
APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies
Quasar RAT Ryuk

2020-11-19 ⋅ Telsy ⋅ Telsy Research Team
QNodeService stepped up its features while operated in widespread credential-theft campaigns
QNodeService

2020-11-19 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Mount Locker ransomware now targets your TurboTax tax returns
Mount Locker

2020-11-19 ⋅ Twitter (@VK_intel) ⋅ Vitali Kremez
Tweet on Trickbot Group pushing LIGHTBOT powershell script to gather information about AD Server
LightBot

2020-11-19 ⋅ FBI ⋅ FBI
MU-000140-MW: Indicators of Compromise Associated with Ragnar Locker Ransomware
RagnarLocker

2020-11-19 ⋅ SANS ISC InfoSec Forums ⋅ Xavier Mertens
PowerShell Dropper Delivering Formbook
Formbook

2020-11-18 ⋅ Stratosphere Laboratory ⋅ Stratosphere Labs
Android Mischief Dataset
AhMyth AndroRAT SpyMax

2020-11-18 ⋅ VMRay ⋅ Mateusz Lukaszewski, Pascal Brackmann, VMRay Labs Team
Malware Analysis Spotlight: AZORult Delivered by GuLoader
Azorult CloudEyE

2020-11-18 ⋅ Seqrite ⋅ Priyanka Shinde
Thanos Ransomware Evading Anti-ransomware Protection With RIPlace Tactic
Hakbit