Malpedia Library

Click here to download all references as Bib-File.•

2022-06-13 ⋅ Risky.biz ⋅ Catalin Cimpanu
Risky Biz News: Google shuts down YouTube Russian propaganda channels
Lilac Typhoon

2022-06-02 ⋅ Trend Micro ⋅ Ieriz Nicolle Gonzalez, Monte de Jesus, Nathaniel Morales
YourCyanide: A CMD-Based Ransomware With Multiple Layers of Obfuscation
YourCyanide

2022-05-25 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Byron Gelera, McJustine De Guzman, Warren Sto.Tomas
New Linux-Based Ransomware Cheerscrypt Targets ESXi Devices

2022-05-18 ⋅ Github (0x00-0x7f) ⋅ Sadia Bashir
A Case of Vidar Infostealer - Part 2
Vidar

2022-05-12 ⋅ cyble ⋅ Cyble Research Labs
A Closer Look At Eternity Malware: Threat Actors Leveraging Telegram To Build Malware
DynamicStealer Eternity Clipper Eternity Ransomware Eternity Stealer Eternity Worm

2022-05-04 ⋅ HP ⋅ Patrick Schläpfer
Tips for Automating IOC Extraction from GootLoader, a Changing JavaScript Malware
GootLoader

2022-04-26 ⋅ Intel 471 ⋅ Intel 471
Conti and Emotet: A constantly destructive duo
Cobalt Strike Conti Emotet IcedID QakBot TrickBot

2022-04-18 ⋅ National Intelligence University ⋅ Kevin P. Riehle
Russian Intelligence: A Case-based Study of Russian Services and Missions Past and Present

2022-03-31 ⋅ CrowdStrike ⋅ Christopher Romano, Vaishnav Murthy
Cloudy with a Chance of Unclear Mailbox Sync: CrowdStrike Services Identifies Logging Inconsistencies in Microsoft 365

2022-03-27 ⋅ Github (0x00-0x7f) ⋅ Sadia Bashir
A Case of Vidar Infostealer - Part 1 (Unpacking)
Vidar

2022-03-26 ⋅ n0p Blog ⋅ Ali Mosajjal
Analysis of a Caddy Wiper Sample Targeting Ukraine
CaddyWiper

2022-03-23 ⋅ splunk ⋅ Shannon Davis
Gone in 52 Seconds…and 42 Minutes: A Comparative Analysis of Ransomware Encryption Speed
Avaddon Babuk BlackMatter Conti DarkSide LockBit Maze Mespinoza REvil Ryuk

2022-03-23 ⋅ KrebsOnSecurity ⋅ Brian Krebs
A Closer Look at the LAPSUS$ Data Extortion Group
RedLine Stealer

2022-03-22 ⋅ Trustwave ⋅ Karla Agregado
Dissecting a Phishing Campaign with a Captcha-based URL

2022-03-22 ⋅ The Hacker News ⋅ Ravie Lakshmanan
Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group
RedLine Stealer

2022-03-21 ⋅ Github (trendmicro) ⋅ Trend Micro Research
Python script to check a Cyclops Blink C&C
CyclopsBlink

2022-03-14 ⋅ Bleeping Computer ⋅ Bill Toulas
Android malware Escobar steals your Google Authenticator MFA codes
Aberebot

2022-03-13 ⋅ Security Affairs ⋅ Pierluigi Paganini
The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years
lampion

2022-03-03 ⋅ LIFARS ⋅ LIFARS
A Closer Look at the Russian Actors Targeting Organizations in Ukraine
HermeticWiper IsaacWiper Saint Bot WhisperGate

2022-03-01 ⋅ Proofpoint ⋅ Michael Raggi, Proofpoint Threat Research Team, Zydeca Cass
Asylum Ambuscade: State Actor Uses Compromised Private Ukrainian Military Emails to Target European Governments and Refugee Movement
SunSeed