Malpedia Library

2020-02-04 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
RagnarLocker Ransomware
RagnarLocker

2020-02-04 ⋅ Github (onek1lo) ⋅ one_k1lo
Borr-Stealer: Repository with decompiled code
Borr

2020-02-04 ⋅ one_k1lo
Borr Malware
Borr

2020-02-04 ⋅ 0x00sec ⋅ Dan Lisichkin
Analyzing Modern Malware Techniques - Part 3: A case of Powershell, Excel 4 Macros and VB6

2020-02-04 ⋅ RevCode
RevCode RAT
WebMonitor RAT

2020-02-03 ⋅ SANS ISC ⋅ Jan Kopriva
Analysis of a triple-encrypted AZORult downloader
Azorult

2020-02-03 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
PassLock Ransomware
Passlock

2020-02-03 ⋅ Telekom ⋅ Thomas Barabosch
Dissecting Emotet – Part 1
Emotet

2020-02-03 ⋅ Dragos ⋅ Dragos
EKANS Ransomware and ICS Operations
Snake

2020-02-03 ⋅ Check Point Research ⋅ Yaroslav Harakhavik
Warzone: Behind the enemy lines
Ave Maria

2020-02-02 ⋅ ESET Research ⋅ Ignacio Sanmillan, Marc-Etienne M.Léveillé
TLP: WHITE A WILD KOBALOS APPEARSTricksy Linux malware goes after HPCs
Kobalos

2020-02-02 ⋅ Sophos Labs ⋅ Markel Picado, Sean Gallagher
Agent Tesla amps up information stealing attacks
Agent Tesla

2020-02-02 ⋅ 360 netlab ⋅ Alex.Turing, Hui Wang, Liu Yang
New Threat: Matryosh Botnet Is Spreading
Matryosh

2020-02-02 ⋅ Youtube (Ghidra Ninja) ⋅ Ghidra Ninja
Reversing WannaCry Part 2 - Diving into the malware with #Ghidra
WannaCryptor

2020-02-02 ⋅ Nullteilerfrei Blog ⋅ Lars Wallenborn
Defeating Sodinokibi/REvil String-Obfuscation in Ghidra
REvil

2020-02-02 ⋅ uf0 Blog ⋅ Matteo Malvica
Uncovering Mimikatz ‘msv’ and collecting credentials through PyKD
MimiKatz

2020-02-01 ⋅ ThreatFabric ⋅ ThreatFabric
2020 - Year of the RAT
Anubis Cerberus Ginp Gustuff Hydra

2020-02-01 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
FCT Ransomware
FCT

2020-01-31 ⋅ YouTube (Context Information Security) ⋅ Contextis
New AVIVORE threat group – how they operate and managing the risk
PlugX

2020-01-31 ⋅ Avira ⋅ Shahab Hamzeloofard
New wave of PlugX targets Hong Kong
PlugX