Malpedia Library

Click here to download all references as Bib-File.•

2024-02-01 ⋅ Securonix ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
Analysis and Detection of STEADY#URSA Attack Campaign Targeting Ukraine Military Dropping New Covert SUBTLE-PAWS PowerShell Backdoor
SUBTLE-PAWS

2024-02-01 ⋅ Bleeping Computer ⋅ Bill Toulas
PurpleFox malware infects thousands of computers in Ukraine
PurpleFox

2024-02-01 ⋅ abuse.ch ⋅ abuse.ch
T34loader payload URLs
T34loader

2024-01-31 ⋅ IBM X-Force Exchange ⋅ IBM Security X-Force Team
CrackedCantil: A Malware Symphony Breakdown
CrackedCantil

2024-01-31 ⋅ AlienVault OTX ⋅ AlienVault
OTX Pulse - CrackedCantil: Malware Work Together
CrackedCantil

2024-01-31 ⋅ Trend Micro ⋅ Feike Hacquebord, Fernando Mercês
Pawn Storm Uses Brute Force and Stealth Against High-Value Targets
Mocky LNK Unidentified 114 (APT28 InfoStealer)

2024-01-31 ⋅ Department of Justice ⋅ Office of Public Affairs
U.S. Government Disrupts Botnet People’s Republic of China Used to Conceal Hacking of Critical Infrastructure
KV

2024-01-31 ⋅ Zscaler ⋅ Javier Vicente
Tracking 15 Years of Qakbot Development
QakBot

2024-01-31 ⋅ Stairwell ⋅ Alex Hegyi, Chris St. Myers, Evelyne Diaz Araque, Matt Richard, Silas Cutler, Vincent Zell
Technical analysis: The silent torrent of VileRAT
VileRAT EVILNUM

2024-01-30 ⋅ ASEC ⋅ Sanseo
Trigona Ransomware Threat Actor Uses Mimic Ransomware
Trigona

2024-01-30 ⋅ Cluster25 ⋅ Cluster25
The Bear and The Shell: New Campaign Against Russian Opposition
HTTP-Shell Sliver

2024-01-30 ⋅ ANY.RUN ⋅ Lena (LambdaMamba)
CrackedCantil: A Malware Symphony Breakdown - PrivateLoader, Smoke, Lumma, RedLine, RisePro, Amadey, Stealc, Socks5Systemz, STOP
Amadey CrackedCantil Lumma Stealer PrivateLoader RedLine Stealer RisePro SmokeLoader Socks5 Systemz Stealc STOP

2024-01-30 ⋅ Bleeping Computer ⋅ Bill Toulas
Police disrupt Grandoreiro banking malware operation, make arrests
Grandoreiro

2024-01-30 ⋅ AT&T Cybersecurity ⋅ Peter Boyle
DarkGate malware delivered via Microsoft Teams - detection and response
DarkGate

2024-01-30 ⋅ K7 Security ⋅ Deepa B
Python’s Byte: The Rise of Scripted Ransomware

2024-01-30 ⋅ DCSO ⋅ DCSO CyTec
Reporting on Volt Typhoon’s “JDY” Botnet Administration Via Tor Sparks Questions

2024-01-30 ⋅ abuse.ch ⋅ Casperinous
JinxLoader samples on YARAify
JinxLoader

2024-01-30 ⋅ Mandiant ⋅ Diana Ion, Jae Young Kim, Muhammad Umair, Panagiotis Antoniou, Yash Gupta
Evolution of UNC4990: Uncovering USB Malware's Hidden Depths
QUIETBOARD Vetta Loader UNC4990

2024-01-29 ⋅ hacked.codes ⋅ Josh Terrill
Technical analysis of WinRAR zero-day malware and C2 protocol emulation

2024-01-29 ⋅ Aquasec ⋅ Asaf Eitani, Nitzan Yaakov
HeadCrab 2.0: Evolving Threat in Redis Malware Landscape
HeadCrab