Malpedia Library

2020-02-27 ⋅ JPCERT/CC ⋅ Kota Kino
Malware “LODEINFO” Targeting Japan
LODEINFO

2020-02-27 ⋅ Kaspersky Labs ⋅ Suguru Ishimaru
Roaming Mantis, part V: Distributed in 2019 using SMiShing and enhanced anti-researcher techniques
FunkyBot MoqHao Roaming Mantis

2020-02-27 ⋅ Vitali Kremez
Let’s Learn: Inside Parallax RAT Malware: Process Hollowing Injection & Process Doppelgänging API Mix: Part I
Parallax RAT

2020-02-27 ⋅ Twitter (@r3c0nst) ⋅ Frank Boldewin
Tweet on DispCashBR
DispCashBR

2020-02-26 ⋅ MetaSwan's Lab ⋅ MetaSwan
Lazarus group's Brambul worm of the former Wannacry - 2
Brambul

2020-02-26 ⋅ MetaSwan's Lab ⋅ MetaSwan
Lazarus group's Brambul worm of the former Wannacry - 1
Brambul WannaCryptor

2020-02-26 ⋅ KELA ⋅ Leon Kurolapnik, Raveed Laeb
What’s Dead May Never Die: AZORult Infostealer Decommissioned Again
Azorult

2020-02-26 ⋅ Secureworks ⋅ Counter Threat Unit ResearchTeam
Business as Usual For Iranian Operations Despite Increased Tensions

2020-02-26 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Sodinokibi Ransomware May Tip NASDAQ on Attacks to Hurt Stock Prices
REvil

2020-02-26 ⋅ MalwareLab.pl ⋅ Maciej Kotowicz
(Ab)using bash-fu to analyze recent Aggah sample
Agent Tesla

2020-02-26 ⋅ SentinelOne ⋅ Jason Reaves
Revealing the Trick | A Deep Dive into TrickLoader Obfuscation
TrickBot

2020-02-25 ⋅ Tilting at Windmills ⋅ Andreas Sfakianakis
On Sea Turtle campaign targeting Greek governmental organisations
Sea Turtle

2020-02-25 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
BlackKingdom Ransomware
BlackKingdom Ransomware

2020-02-25 ⋅ Bleeping Computer ⋅ Lawrence Abrams
DoppelPaymer Ransomware Launches Site to Post Victim's Data
DoppelPaymer FriedEx

2020-02-24 ⋅ CyberArk ⋅ Ben Cohen
Analyzing the Raccoon Stealer
Raccoon

2020-02-24 ⋅ Dragos ⋅ Dragos
2019 Year In Review: The ICS Landscape and Threat Actviity Groups
Fox Kitten

2020-02-24 ⋅ Sophos Labs ⋅ Sergei Shevchenko
Cloud Snooper attack bypasses firewall security measures
Cloud Snooper