Malpedia Library

2020-09-01 ⋅ Facebook ⋅ Facebook
August 2020 Coordinated Inauthentic Behavior Report

2020-09-01 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
An Exhaustively-Analyzed IDB for ComRAT v4
Agent.BTZ

2020-09-01 ⋅ nviso ⋅ Bart Parys, Didier Stevens, Dries Boone, Maxime Thiebaut, Michel Coene
Epic Manchego – atypical maldoc delivery brings flurry of infostealers
Azorult NjRAT

2020-09-01 ⋅ Twitter (@Vishnyak0v) ⋅ Alexey Vishnyakov
Tweet on sample discovery
Unidentified 078 (Zebrocy Nim Loader?)

2020-09-01 ⋅ Gdata ⋅ Karsten Hahn
DLL Fixer leads to Cyrat Ransomware
Cyrat

2020-08-31 ⋅ Inde ⋅ Chris Campbell
Analysis of the latest wave of Emotet malicious documents
Emotet

2020-08-31 ⋅ Symantec ⋅ Threat Hunter Team
Sophisticated Groups and Cyber Criminals Set Sights on Lucrative Financial Sector
WastedLocker

2020-08-31 ⋅ Github (ics-iot-bootcamp) ⋅ Ali Rıza Şahinkaya, Can Atakan Işık, Rıdvan Ethem Canavar
Cerberus Banking Trojan Research
Cerberus

2020-08-31 ⋅ CrowdStrike ⋅ Alex Orleans
Who Is PIONEER KITTEN?
Fox Kitten

2020-08-31 ⋅ ⋅ Andrew Ivanov
XP10 Ransomware
XP10

2020-08-31 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
Malware Used by Lazarus after Network Intrusion
Lazarus Group

2020-08-31 ⋅ SentinelOne ⋅ Jim Walter
The BLINDINGCAN RAT and Malicious North Korean Activity
BLINDINGCAN

2020-08-31 ⋅ Netlab ⋅ GenShen Ye, Yanlong Ma, Ye Jin
In the wild QNAP NAS attacks

2020-08-31 ⋅ The DFIR Report ⋅ The DFIR Report
NetWalker Ransomware in 1 Hour
Cobalt Strike Mailto MimiKatz

2020-08-31 ⋅ cyber.wtf blog ⋅ Luca Ebach
Trickbot rdpscanDll – Transforming Candidate Credentials for Brute-Forcing RDP Servers
TrickBot

2020-08-31 ⋅ ⋅ JPCERT/CC ⋅ Shusei Tomonaga
Malware used by the attack group Lazarus after network intrusion

2020-08-30 ⋅ ⋅ Andrew Ivanov
Z3 Ransomware
Z3

2020-08-29 ⋅ Aguinet ⋅ Adrien Guinet
Emulating NotPetya bootloader with Miasm
EternalPetya

2020-08-28 ⋅ CYBERWISE ⋅ Ali Rıza Şahinkaya, Can Atakan Işık, Rıdvan Ethem Canavar
Cerberus Banking Trojan Analysis
Cerberus

2020-08-28 ⋅ NTT ⋅ Fumio Ozawa, Rintaro Koike, Shogo Hayashi
Operation Lagtime IT: Colourful Panda Footprint
Cotx RAT Poison Ivy TA428