Malpedia Library

Click here to download all references as Bib-File.•

2023-10-17 ⋅ ⋅ AhnLab ⋅ ASEC Analysis Team
Lazarus Group’s Operation Dream Magic
LazarDoor wAgentTea

2023-10-17 ⋅ Kaspersky Labs ⋅ GReAT
APT trends report Q3 2023
BadRory TetrisPhantom

2023-10-17 ⋅ Oliver Hough
PROSPERNOT (PROSPERO-AS) The Little AS That Could. Part 1

2023-10-16 ⋅ Sekoia ⋅ Quentin Bourgue, Threat & Detection Research Team
ClearFake: a newcomer to the “fake updates” threats landscape
ClearFake

2023-10-16 ⋅ Twitter (@embee_research) ⋅ Embee_research
Decoding a Simple Visual Basic (.vbs) Script - DarkGate Loader
DarkGate

2023-10-16 ⋅ Kaspersky Labs ⋅ GReAT
A hack in hand is worth two in the bush
StrifeWater RAT Cyber Av3ngers

2023-10-15 ⋅ The Record ⋅ Jonathan Greig
Colonial Pipeline attributes ransomware claims to ‘unrelated’ third-party data breach
RansomVC

2023-10-15 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Peculiarities of destructive cyber attacks against Ukrainian providers (CERT-UA#7627)
Poseidon UAC-0006

2023-10-13 ⋅ ⋅ Medium BI.ZONE ⋅ BI.ZONE
Sticky Werewolf spies attack state organizations of Russia and Belarus
Darktrack RAT

2023-10-13 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on Storm-1575 and Dadsec phishing platform
Storm-1575

2023-10-13 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
Rewterz Threat Alert – Power Supplier’s Network Infiltrated for 6 Months by “Redfly” Hackers – Active IOCs
Redfly

2023-10-13 ⋅ AhnLab ⋅ ASEC Analysis Team
Analysis Report on Lazarus Threat Group’s Volgmer and Scout Malware
JessieConTea Scout Volgmer

2023-10-12 ⋅ YouTube (FIRST) ⋅ Aditya K. Sood
"Compromising the Keys to the Kingdom" - Exfiltrating Data to Own and Operate the Exploited Systems
Loki RAT SystemBC

2023-10-12 ⋅ Trendmicro ⋅ Trend Micro Research
DarkGate Opens Organizations for Attack via Skype, Teams
DarkGate

2023-10-12 ⋅ Spamhaus ⋅ Spamhaus Malware Labs
Spamhaus Botnet Threat Update Q3 2023
FluBot AsyncRAT Ave Maria Cobalt Strike DCRat Havoc IcedID ISFB Nanocore RAT NjRAT QakBot Quasar RAT RecordBreaker RedLine Stealer Remcos Rhadamanthys Sliver Stealc Tofsee Vidar

2023-10-12 ⋅ Cluster25 ⋅ Cluster25 Threat Intel Team
CVE-2023-38831 Exploited by Pro-Russia Hacking Groups in RU-UA Conflict Zone for Credential Harvesting Operations
Agent Tesla Crimson RAT Nanocore RAT SmokeLoader

2023-10-11 ⋅ Microsoft ⋅ Amir Kutcher, Charles-Edouard Bettan, Edan Zwick, Noam Hadash, Yair Tsarfaty
Automatic disruption of human-operated attacks through containment of compromised user accounts
Akira Akira

2023-10-11 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet on Storm-0062 exploiting CVE-2023-22515
Storm-0062

2023-10-10 ⋅ Qianxin ⋅ admin
Sand Cat Group - Attacks on Kurdistan Democratic Party (KDP) Activists
MOrder RAT Caracal Kitten

2023-10-10 ⋅ cyble ⋅ Cyble
Threat Actor deploys Mythic’s Athena Agent to target Russian Semiconductor Suppliers
Athena