Malpedia Library

2018-12-21 ⋅ FireEye ⋅ Alex Orleans, Andrew Thompson, Geoff Ackerman, Nick Carr, Rick Cole
OVERRULED: Containing a Potentially Destructive Adversary
POWERTON PoshC2 pupy

2018-12-10 ⋅ Symantec ⋅ Symantec DeepSight Adversary Intelligence Team
Seedworm: Group Compromises Government Agencies, Oil & Gas, NGOs, Telecoms, and IT Firms
MuddyWater

2018-11-27 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for November: HELIX KITTEN
OilRig

2018-11-01 ⋅ Fortinet ⋅ FortiGuard SE Team
CTA Adversary Playbook: Goblin Panda
GOBLIN PANDA Hellsing

2018-10-26 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for October: DUNGEON SPIDER
DUNGEON SPIDER

2018-10-25 ⋅ Europol ⋅ Europol
Pay No More: universal GandCrab decryption tool released for free on No More Ransom
Gandcrab

2018-09-28 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for September: COBALT SPIDER
Cobalt

2018-08-29 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for August: GOBLIN PANDA
GOBLIN PANDA Hellsing

2018-08-01 ⋅ CrowdStrike ⋅ Paul Moon
Arrests Put New Focus on CARBON SPIDER Adversary Group
FIN7

2018-07-26 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for July: WICKED SPIDER
APT41

2018-06-15 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for June: MUSTANG PANDA
MUSTANG PANDA

2018-05-18 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for May: MYTHIC LEOPARD
Operation C-Major

2018-04-13 ⋅ NewSky Security ⋅ NewSky Security
Understanding the IoT Hacker — A Conversation With Owari/Sora IoT Botnet Author
Owari

2018-02-15 ⋅ RSA ⋅ Ahmed Sonbol
Malspam delivers Keybase keylogger
KeyBase

2018-02-13 ⋅ RSA ⋅ Kevin Stear
Lotus Blossom Continues ASEAN Targeting
LOTUS PANDA

2018-02-08 ⋅ CrowdStrike ⋅ Adam Meyers
Meet CrowdStrike’s Adversary of the Month for February: MUMMY SPIDER
Emotet MUMMY SPIDER

2017-12-15 ⋅ Palo Alto Networks Unit 42 ⋅ Ryan Olson
Introducing the Adversary Playbook: First up, OilRig
OilRig

2017-12-08 ⋅ RSA ⋅ Kent Beckman
GratefulPOS credit card stealing malware - just in time for the shopping season
Grateful POS

2017-12-04 ⋅ RSA ⋅ Jack Wesley Riley
The Shadows of Ghosts Inside the response of a unique Carbanak intrusion
GOTROJ MimiKatz

2017-11-16 ⋅ Github (mdsecactivebreach) ⋅ Vincent Yiu
CACTUSTORCH: Payload Generation for Adversary Simulations
CACTUSTORCH