Malpedia Library

Click here to download all references as Bib-File.•

2024-02-29 ⋅ StrikeReady ⋅ StrikeReady Labs
Don't get BITTER about being targeted -- fight back with the help of the community.
Bitter RAT

2024-02-29 ⋅ SANS ISC ⋅ John Moutos
Dissecting DarkGate: Modular Malware Delivery and Persistence as a Service
DarkGate

2024-02-28 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
XRed Backdoor: The Hidden Threat in Trojanized Programs
XRed

2024-02-28 ⋅ EchoCTI ⋅ Bilal BAKARTEPE, bixploit
Raccoon Stealer V2.0 Technical Analysis
Raccoon

2024-02-28 ⋅ Avast Decoded ⋅ Jan Vojtěšek
Lazarus and the FudModule Rootkit: Beyond BYOVD with an Admin-to-Kernel Zero-Day
FudModule

2024-02-28 ⋅ VMRay ⋅ VMRay Labs Team
Just Carry A Ladder: Why Your EDR Let Pikabot Jump Through
Pikabot

2024-02-28 ⋅ Spamhaus ⋅ Spamhaus Malware Labs
Toot about SmokeLoader dropping Xehook Stealer
SmokeLoader

2024-02-27 ⋅ BitSight ⋅ André Tavares
Hunting PrivateLoader: The malware behind InstallsKey PPI service
PrivateLoader RisePro

2024-02-27 ⋅ Doubleagent.net ⋅ haxrob
GTPDOOR - A novel backdoor tailored for covert access over the roaming exchange
GTPDOOR

2024-02-27 ⋅ splunk ⋅ Splunk Threat Research Team, Teoderick Contreras
Unveiling Phemedrone Stealer: Threat Analysis and Detections
Phemedrone Stealer

2024-02-27 ⋅ Github (VenzoV) ⋅ VenzoV
Wikiloader part 3 -> Explorer shellcode
WikiLoader

2024-02-27 ⋅ Zscaler ⋅ Roy Tay, Sudeep Singh
European diplomats targeted by SPIKEDWINE with WINELOADER
WINELOADER SPIKEDWINE

2024-02-26 ⋅ SOC Prime ⋅ Veronika Telychko
UAC-0149 Attack Detection: Hackers Launch a Targeted Attack Against the Armed Forces of Ukraine, as CERT-UA Reports
COOKBOX UAC-0149

2024-02-26 ⋅ SpyCloud ⋅ Ashley Allocca, Kyla Cardona
“Pantsless Data”: Decoding Chinese Cybercrime TTPs

2024-02-26 ⋅ Twitter (@embee_research) ⋅ Embee_research
Advanced CyberChef Techniques for Configuration Extraction - Detailed Walkthrough and Examples
NetSupportManager RAT

2024-02-26 ⋅ NCSC UK ⋅ NCSC UK
SVR cyber actors adapt tactics for initial cloud access

2024-02-26 ⋅ cyber5w ⋅ Amr Ashraf
Pikabot Loader Detailed Analysis
Pikabot

2024-02-24 ⋅ Cert-UA ⋅ Cert-UA
UAC-0149: Targeted selective attacks against the Defense Forces of Ukraine using COOKBOX (CETRT-UA#9204)
COOKBOX UAC-0149

2024-02-23 ⋅ Elastic ⋅ Daniel Stepanic, Salim Bitam
PIKABOT, I choose you!
Pikabot

2024-02-22 ⋅ Sekoia ⋅ Livia Tibirna, Pierre-Antoine D., Quentin Bourgue, Threat & Detection Research Team
Scattered Spider laying new eggs
BlackCat