Malpedia Library

2020-06-26 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
WastedLocker: Symantec Identifies Wave of Attacks Against U.S. Organizations
donut_injector WastedLocker

2020-06-25 ⋅ Dr.Web ⋅ Dr.Web
BackDoor.ShadowPad.1
ShadowPad

2020-06-25 ⋅ Github (7h3w4lk3r) ⋅ The Walker
Github Repository of PYBACK
pyback

2020-06-25 ⋅ Contextis ⋅ Connor Scott
Zoom In: Emulating 'Exploit Purchase' in Simulated Targeted Attacks

2020-06-25 ⋅ CrowdStrike ⋅ Umesh Wanve
GuLoader: Peering Into a Shellcode-based Downloader
CloudEyE

2020-06-25 ⋅ Trustwave ⋅ Trustwave SpiderLabs
The Golden Tax Department and Emergence of GoldenSpy Malware
GoldenSpy

2020-06-25 ⋅ Malwarebytes ⋅ Jérôme Segura
Web skimmer hides within EXIF metadata, exfiltrates credit cards via image files
magecart

2020-06-25 ⋅ Check Point Research ⋅ Liron Yosefian, Ori Hamama
DarkCrewBot – The Return of the Bot Shop Crew

2020-06-25 ⋅ Anomali ⋅ Gage Mele, Parthiban Rajendran
Unknown China-Based APT Targeting Myanmarese Entities

2020-06-25 ⋅ Trustwave ⋅ Brian Hussey
The Golden Tax Department and the Emergence of GoldenSpy Malware
GoldenSpy

2020-06-25 ⋅ Elastic ⋅ Daniel Stepanic, Samir Bousseaden
A close look at the advanced techniques used in a Malaysian-focused APT campaign
DADSTACHE APT40

2020-06-25 ⋅ Medium CSIS Techblog ⋅ Aleksejs Kuprins
The RoamingMantis Group’s Expansion to European Apple Accounts and Android Devices
FakeSpy FunkyBot MoqHao

2020-06-24 ⋅ ClearSky ⋅ ClearSky Research Team
CryptoCore Group : A Threat Actor Targeting Cryptocurrency Exchanges
CageyChameleon

2020-06-24 ⋅ ClearSky ⋅ ClearSky Research Team
CryptoCore: A Threat Actor Targeting Cryptocurrency Exchanges
CageyChameleon

2020-06-24 ⋅ CyberScoop ⋅ Shannon Vavra
Hackers are still running coronavirus-related campaigns, CrowdStrike warns
TRAVELING SPIDER

2020-06-24 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
DropboxAES Remote Access Trojan

2020-06-24 ⋅ Sophos Naked Security ⋅ Paul Ducklin
Glupteba - the malware that gets secret messages from the Bitcoin blockchain
Glupteba

2020-06-24 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
BRONZE VINEWOOD Uses HanaLoader to Target Government Supply Chain
APT31

2020-06-24 ⋅ Counter Threat Unit ResearchTeam
BRONZE VINEWOOD Targets Supply Chains
MimiKatz Trochilus RAT APT31

2020-06-24 ⋅ Morphisec ⋅ Arnold Osipov
Obfuscated VBScript Drops Zloader, Ursnif, Qakbot, Dridex
Dridex ISFB QakBot Zloader