Malpedia Library

Click here to download all references as Bib-File.•

2022-06-24 ⋅ Palo Alto Networks Unit 42 ⋅ Mark Lim, Riley Porter
There Is More Than One Way to Sleep: Dive Deep Into the Implementations of API Hammering by Various Malware Families
BazarBackdoor Zloader

2022-06-13 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
GALLIUM Expands Targeting Across Telecommunications, Government and Finance Sectors With New PingPull Tool

2022-06-10 ⋅ Palo Alto Networks Unit 42 ⋅ Daniel Bunce, Doel Santos
Exposing HelloXD Ransomware and x4k

2022-06-09 ⋅ Palo Alto Networks Unit 42 ⋅ Abigail Barr, Amer Elsad, JR Gumarin
LockBit 2.0: How This RaaS Operates and How to Protect Against It
LockBit

2022-05-20 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others)
Bashlite Mirai PerlBot

2022-05-19 ⋅ Palo Alto Networks Unit 42 ⋅ Saqib Khanzada
Weaponization of Excel Add-Ins Part 2: Dridex Infection Chain Case Studies
Dridex

2022-05-17 ⋅ Palo Alto Networks Unit 42 ⋅ Brad Duncan
Emotet Summary: November 2021 Through January 2022
Emotet

2022-05-12 ⋅ Palo Alto Networks Unit 42 ⋅ Tyler Halfpop
Harmful Help: Analyzing a Malicious Compiled HTML Help File Delivering Agent Tesla
Agent Tesla

2022-05-06 ⋅ Palo Alto Networks Unit 42 ⋅ Chris Navarrete, Durgesh Sangvikar, Siddhart Shibiraj, Yanhui Jia, Yu Fu
Cobalt Strike Analysis and Tutorial: CS Metadata Encoding and Decoding
Cobalt Strike

2022-04-08 ⋅ Palo Alto Networks Unit 42 ⋅ Inbal Shalev, Irena Damsky, Shimi Cohen
New SolarMarker (Jupyter) Campaign Demonstrates the Malware’s Changing Attack Patterns
solarmarker

2022-03-31 ⋅ Palo Alto Networks Unit 42 ⋅ Haozhe Zhang, Ken Hsu, Qi Deng, Tao Yan
CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell)

2022-03-24 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Ransomware Threat Report 2022

2022-02-22 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Russia-Ukraine Crisis: How to Protect Against the Cyber Impact
HermeticWiper

2022-02-15 ⋅ Palo Alto Networks Unit 42 ⋅ Brad Duncan, Micah Yates, Saqib Khanzada, Tyler Halfpop
New Emotet Infection Method
Emotet

2022-02-03 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting Ukraine (Updated June 22)
Pteranodon Gamaredon Group

2022-02-03 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Russia’s Gamaredon aka Primitive Bear APT Group Actively Targeting Ukraine
Pteranodon Gamaredon Group

2022-01-27 ⋅ Palo Alto Networks Unit 42 ⋅ Alex Hinchliffe, Amanda Tanner, Doel Santos
Threat Assessment: BlackCat Ransomware
BlackCat

2022-01-25 ⋅ Palo Alto Networks Unit 42 ⋅ Yaron Samuel
Weaponization of Excel Add-Ins Part 1: Malicious XLL Files and Agent Tesla Case Studies
Agent Tesla

2022-01-20 ⋅ Palo Alto Networks Unit 42 ⋅ Josh Grunzweig, Mike Harbison, Robert Falcone
Threat Brief: Ongoing Russia and Ukraine Cyber Conflict
WhisperGate

2021-12-29 ⋅ Palo Alto Networks Unit 42 ⋅ Daiping Liu, Jielong Xu, Wanjin Li, Zhanhao Chen
Strategically Aged Domain Detection: Capture APT Attacks With DNS Traffic Trends
Chrysaor SUNBURST