Malpedia Library

Click here to download all references as Bib-File.•

2019-11-05 ⋅ McAfee ⋅ Alexandre Mundo, Marc Rivero López
Buran Ransomware; the Evolution of VegaLocker
VegaLocker

2019-11-05 ⋅ Kaspersky Labs ⋅ Alexander Fedotov, Andrey Dolgushev, Vasily Berdnikov
DarkUniverse – the mysterious APT framework #27
ItaDuke

2019-11-05 ⋅ Dissecting Malware ⋅ Marius Genheimer
Try not to stare - MedusaLocker at a glance
MedusaLocker

2019-11-05 ⋅ PepperMalware Blog ⋅ Pepper Potts
Brief analysis of Redaman Banking Malware (v0.6.0.2) Sample
RTM

2019-11-05 ⋅ Twitter (@VK_intel) ⋅ Vitali Kremez
Tweet on Possible Snatch
Snatch

2019-11-05 ⋅ Bleeping Computer ⋅ Lawrence Abrams
New Megacortex Ransomware Changes Windows Passwords, Threatens to Publish Data
MegaCortex

2019-11-05 ⋅ Brian Bartholomew
DADJOKE
DADJOKE

2019-11-05 ⋅ tccontre Blog ⋅ tccontre
CobaltStrike - beacon.dll : Your No Ordinary MZ Header
Cobalt Strike

2019-11-04 ⋅ Symantec ⋅ Eduardo Altares, Muhammad Hasib Latif, Nguyen Hoang Giang
Nemty Ransomware Expands Its Reach, Also Delivered by Trik Botnet
Nemty Phorpiex

2019-11-04 ⋅ ⋅ Tencent ⋅ Tencent Security Mikan TIC
APT attack group "Higaisa" attack activity disclosed
Ghost RAT Higaisa

2019-11-04 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
Hakbit Ransomware
Hakbit

2019-11-04 ⋅ Marco Ramilli's Blog ⋅ Marco Ramilli
Is Lazarus/APT38 Targeting Critical Infrastructures?
Dtrack

2019-11-03 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
DTrack
Dtrack

2019-11-01 ⋅ ThreatFabric ⋅ ThreatFabric
Ginp - A malware patchwork borrowing from Anubis
Ginp

2019-11-01 ⋅ ⋅ CCN-CERT ⋅ CCN-CERT
Informe Código Dañino CCN-CERT ID-26/19
Ryuk

2019-11-01 ⋅ Kaspersky Labs ⋅ AMR, GReAT
Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium
Operation WizardOpium

2019-11-01 ⋅ Virus Bulletin ⋅ Alexandre Mundo Alguacil, John Fokker
VB2019 paper: Different ways to cook a crab: GandCrab ransomware-as-a-service (RaaS) analysed in depth
Gandcrab

2019-11-01 ⋅ Dodge This Security ⋅ Dodge This Security
Hancitor. Evasive new waves, and how COM objects can use Cached Credentials for Proxy Authentication
Hancitor

2019-11-01 ⋅ CrowdStrike ⋅ Alexander Hanel, Brett Stone-Gross
WIZARD SPIDER Adds New Features to Ryuk for Targeting Hosts on LAN
Ryuk WIZARD SPIDER

2019-10-31 ⋅ m.alvar.es ⋅ Marcos Alvares
Dynamic Imports and Working Around Indirect Calls - Smokeloader Study Case
SmokeLoader