Malpedia Library

Click here to download all references as Bib-File.•

2020-05-21 ⋅ Armorblox ⋅ Chetan Anand
Blox Tales #6: Subpoena-Themed Phishing With CAPTCHA Redirect

2020-05-21 ⋅ ESET Research ⋅ Martin Smolár, Mathieu Tartare
No “Game over” for the Winnti Group
ACEHASH HTran MimiKatz PipeMon

2020-05-21 ⋅ Intezer ⋅ Paul Litvak
The Evolution of APT15’s Codebase 2020
Ketrican Ketrum Okrum

2020-05-21 ⋅ Sophos ⋅ SophosLabs Uncut
Ragnar Locker ransomware deploys virtual machine to dodge security
RagnarLocker

2020-05-21 ⋅ VMWare Carbon Black ⋅ Jared Myers
TAU Technical Report: New Attack Combines TinyPOS With Living-off-the-Land Techniques for Scraping Credit Card Data
AbaddonPOS

2020-05-21 ⋅ Trend Micro ⋅ Llallum Victoria, Raphael Centeno
Backdoor, Devil Shadow Botnet Hidden in Fake Zoom Installers

2020-05-21 ⋅ Malwarebytes ⋅ hasherezade, prsecurity
The “Silent Night” Zloader/Zbot
Zloader

2020-05-20 ⋅ Zscaler ⋅ Amandeep Kumar, Rohit Chaturvedi
Latest Version of Amadey Introduces Screen Capturing and Pushes the Remcos RAT
Amadey Remcos

2020-05-20 ⋅ Medium Asuna Amawaka ⋅ Asuna Amawaka
What happened between the BigBadWolf and the Tiger?
Ghost RAT

2020-05-20 ⋅ VIPRE ⋅ VIPRE Labs
Unloading the GuLoader
CloudEyE

2020-05-20 ⋅ SentinelOne ⋅ Jim Walter
Why On-Device Detection Matters: New Ramsay Trojan Targets Air-Gapped Networks
Ramsay

2020-05-20 ⋅ PTSecurity ⋅ PT ESC Threat Intelligence
Operation TA505: how we analyzed new tools from the creators of the Dridex trojan, Locky ransomware, and Neutrino botnet
FlawedAmmyy

2020-05-20 ⋅ Youtube (nonepizza) ⋅ nonepizza
(PandaBanker Analysis) Fixing Corrupted PE Headers and Unmapping an Executable
PandaBanker

2020-05-20 ⋅ Avast Decoded ⋅ Alexej Savčin, David Jursa, Jan Rubín, Simi Musilova
GhostDNS Source Code Leaked

2020-05-20 ⋅ Reflectiz ⋅ Reflectiz
The Gocgle Malicious Campaign
magecart

2020-05-20 ⋅ Proofpoint ⋅ Dennis Schwarz, Matthew Mesa, Proofpoint Threat Research Team
ZLoader Loads Again: New ZLoader Variant Returns
Zloader

2020-05-19 ⋅ zero2auto ⋅ Vitali Kremez
Netwalker Ransomware - From Static Reverse Engineering to Automatic Extraction
Mailto

2020-05-19 ⋅ Hornetsecurity ⋅ Security Lab
Information Stealer Campaign Targeting German HR Contacts
LALALA Stealer

2020-05-19 ⋅ Advanced Intelligence ⋅ Advanced Intelligence, Bridgit Sullivan, Daniel Frey
NetWalker Ransomware Group Enters Advanced Targeting “Game”
Mailto

2020-05-19 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
Sophisticated Espionage Group Turns Attention to Telecom Providers in South Asia
ISMAgent ISMDoor