Malpedia Library

Click here to download all references as Bib-File.•

2024-04-19 ⋅ Medium MITRE-Engenuity ⋅ Charles Clancy, Lex Crumpton
Advanced Cyber Threats Impact Even the Most Prepared

2024-04-19 ⋅ ThreatMon ⋅ ThreatMon, ThreatMon Malware Research Team
APT44: The Famous Sandworm of Russia

2024-04-19 ⋅ ⋅ Spiegel Online ⋅ Christoph Giesen, Hakan Tanriverdi, Simon Hage
VW-Konzern wurde jahrelang ausspioniert – von China?
CHINACHOPPER PlugX

2024-04-18 ⋅ ⋅ Cert-UA ⋅ Cert-UA
UAC-0149 cyberattack exploiting Signal, CVE-2023-38831 vulnerability, and COOKBOX malware (CERT-UA#9522)
COOKBOX

2024-04-18 ⋅ Avast ⋅ Luigino Camastra
From BYOVD to a 0-day: Unveiling Advanced Exploits in Cyber Recruiting Scams
FudModule

2024-04-18 ⋅ EchoCTI ⋅ Bilal BAKARTEPE, bixploit
Turla APT Analysis with TinyTurla-NG
TinyTurlaNG

2024-04-17 ⋅ McAfee ⋅ Mohansundaram M, Neil Tyagi
Redline Stealer: A Novel Approach
RedLine Stealer SmartLoader

2024-04-17 ⋅ Microsoft ⋅ Clint Watts, Microsoft Threat Analysis Center (MTAC)
Russian US election interference targets support for Ukraine after slow start

2024-04-17 ⋅ Microsoft ⋅ Microsoft Threat Analysis Center (MTAC)
Nation-states engage in US-focused influence operations ahead of US presidential election

2024-04-17 ⋅ Microsoft ⋅ Hagai Ran Kestenberg, Yossi Weizman
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters

2024-04-17 ⋅ Kaspersky ⋅ Dmitry Kalinin
SoumniBot: the new Android banker’s unique techniques
SoumniBot

2024-04-17 ⋅ WithSecure ⋅ Mohammad Kazem Hassan Nejad
KAPEKA A novel backdoor spotted in Eastern Europe
Kapeka

2024-04-16 ⋅ HarfangLab ⋅ HarfangLab CTR
Analysis of the APT31 Indictment
RAWDOOR APT31

2024-04-16 ⋅ paloalto Netoworks: Unit42 ⋅ paloalto Networks: Unit42
ContactForms campaign pushing SSLoad malware
SSLoad

2024-04-16 ⋅ Mandiant ⋅ Alden Wahlstrom, Anton Prokopenkov, Dan Black, Dan Perez, Gabby Roncone, John Wolfram, Lexie Aytes, Nick Simonian, Ryan Hall, Tyler McLellan
APT44: Unearthing Sandworm
VPNFilter BlackEnergy CaddyWiper EternalPetya HermeticWiper Industroyer INDUSTROYER2 Olympic Destroyer PartyTicket RoarBAT Sandworm

2024-04-15 ⋅ ⋅ CheckMal ⋅ CheckMal
MarraCrypt ransomware resembles Hermes ransomware
Hermes MarraCrypt

2024-04-15 ⋅ UC Santa Cruz ⋅ Alonso Rojas, Alvaro A. Cardenas, Bing Huang, Emmanuele Zambon, Juan Lozano, Keerthi Koneru, Luis Salazar, Marina Krotofil, Ross Baldick, Sebastian R. Castro
A Tale of Two Industroyers: It was the Season of Darkness
Industroyer INDUSTROYER2

2024-04-15 ⋅ Positive Technologies ⋅ Aleksandr Badaev, Kseniya Naumova
SteganoAmor campaign: TA558 mass-attacking companies and public institutions all around the world
LokiBot 404 Keylogger Agent Tesla CloudEyE Formbook Remcos XWorm

2024-04-14 ⋅ DFIR.ch ⋅ Stephan Berger
Sysrv Infection (Linux Edition)
Sysrv-hello

2024-04-13 ⋅ cyber5w ⋅ cyber5w, M4lcode
Analysis of malicious Microsoft office macros
AsyncRAT Ave Maria