Malpedia Library

2019-03-20 ⋅ CrowdStrike ⋅ Brendon Feeley, Brett Stone-Gross
New Evidence Proves Ongoing WIZARD SPIDER / LUNAR SPIDER Collaboration
LUNAR SPIDER WIZARD SPIDER

2019-03-20 ⋅ Flashpoint ⋅ Jason Reaves, Joshua Platt
FIN7 Revisited: Inside Astra Panel and SQLRat Malware
DNSRat TinyMet

2019-03-20 ⋅ Github (649) ⋅ @037
APT38 DYEPACK FRAMEWORK
DYEPACK

2019-03-19 ⋅ Palo Alto Networks Unit 42 ⋅ Josh Grunzweig, Tom Lancaster
Cardinal RAT Sins Again, Targets Israeli Fin-Tech Firms
EVILNUM Cardinal RAT EVILNUM

2019-03-19 ⋅ NSHC ⋅ ThreatRecon Team
SectorM04 Targeting Singapore – An Analysis
PlugX Termite

2019-03-19 ⋅ 奇安信威胁情报中心
APT-C-27 (Goldmouse): Suspected Target Attack against the Middle East with WinRAR Exploit
GoldenRAT APT-C-27

2019-03-18 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
New Mirai Variant Targets Enterprise Wireless Presentation & Display Systems
Mirai

2019-03-18 ⋅ DCSO ⋅ DCSO
Enterprise Malware-as-a-Service: Lazarus Group and the Evolution of Ransomware
Hermes

2019-03-18 ⋅ PepperMalware Blog ⋅ Pepper Potts
Analysis of .Net Stealer GrandSteal
GrandSteal

2019-03-18 ⋅ Pepper Potts
Analysis of BlackMoon (Banking Trojan)'s Evolution, And The Possibility of a Latest Version Under Development
KrBanker

2019-03-17 ⋅ Global ATM Malware Wall ⋅ Cybercrime Tracker
Global ATM Malware Wall
Ligsterac Skimer

2019-03-17 ⋅ Persianov on Security ⋅ Sveatoslav Persianov
Emotet malware analysis. Part 1
Emotet

2019-03-17 ⋅ ZDNet ⋅ Catalin Cimpanu
Round 4: Hacker returns and puts 26Mil user records for sale on the Dark Web
Gnosticplayers

2019-03-15 ⋅ Zscaler ⋅ Rajdeepsinh Dodia, Uday Pratap Singh
Immortal information stealer
Immortal Stealer

2019-03-15 ⋅ Anomali ⋅ Threat Research Team
Rocke Evolves Its Arsenal With a New Malware Family Written in Golang
kerberods

2019-03-15 ⋅ Cofense ⋅ Threat Intelligence
Flash Bulletin: Emotet Epoch 1 Changes its C2 Communication
Emotet

2019-03-14 ⋅ CISA ⋅ CISA
MAR-10135536-12 – North Korean Trojan: TYPEFRAME
miniTypeFrame TYPEFRAME

2019-03-14 ⋅ Proofpoint ⋅ Proofpoint
Daily Ruleset Update Summary 2019/03/14
CageyChameleon

2019-03-14 ⋅ DCSO ⋅ DCSO
Pegasus/Buhtrap analysis of the malware stage based on the leaked source code
Buhtrap

2019-03-14 ⋅ Trustwave ⋅ Simon Kenin
Attacker Tracking Users Seeking Pakistani Passport
scanbox