Malpedia Library

2018-12-17 ⋅ Twitter (@MJDutch) ⋅ Justin
Tweet on APT39
OilRig

2018-12-14 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
Shamoon: Destructive Threat Re-Emerges with New Sting in its Tail
DistTrack Filerase StoneDrill OilRig

2018-12-14 ⋅ Australian Cyber Security Centre ⋅ ASD
Investigationreport: Compromise of an Australian companyvia their Managed Service Provider
PlugX RedLeaves

2018-12-14 ⋅ Symantec ⋅ Security Response Attack Investigation Team
Shamoon: Destructive Threat Re-Emerges with New Sting in its Tail
OilRig

2018-12-14 ⋅ Trend Micro ⋅ Aliakbar Zahravi
Cybercriminals Use Malicious Memes that Communicate with Malware
Berbomthum

2018-12-13 ⋅ Trend Micro ⋅ Mohamad Mokbel
Tildeb: An Implant from the Shadow Brokers’ Leak
tildeb

2018-12-13 ⋅ Security 0wnage ⋅ Mo Bustami
POWERSING - From LNK Files To Janicab Through YouTube & Twitter
Janicab

2018-12-13 ⋅ Certfa ⋅ Certfa Lab
The Return of The Charming Kitten
Charming Kitten

2018-12-13 ⋅ Palo Alto Networks Unit 42 ⋅ Robert Falcone
Shamoon 3 Targets Oil and Gas Organization
DistTrack

2018-12-12 ⋅ US Department of Justice ⋅ US Department of Justice
Indictment against Andrey Turchin aka fxmsp

2018-12-12 ⋅ SecureData ⋅ Wicus Ross
The TrickBot and MikroTik connection
TrickBot

2018-12-12 ⋅ 360 Threat Intelligence ⋅ Qi Anxin Threat Intelligence Center
Donot (APT-C-35) Group Is Targeting Pakistani Businessman Working In China
VICEROY TIGER

2018-12-12 ⋅ McAfee ⋅ Asheer Malhotra, Ryan Sherstobitoff
‘Operation Sharpshooter’ Targets Global Defense, Critical Infrastructure
Rising Sun Lazarus Group Operation Sharpshooter

2018-12-12 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Dear Joohn: The Sofacy Group’s Global Campaign
APT28

2018-12-12 ⋅ Kaspersky Labs ⋅ Anton Ivanov, Boris Larin, Vladislav Stolyarov
Zero-day in Windows Kernel Transaction Manager (CVE-2018-8611)
SandCat

2018-12-12 ⋅ McAfee ⋅ Asheer Malhotra, Ryan Sherstobitoff
Operation Sharpshooter: Campaign Targets Global Defense, Critical Infrastructure
Rising Sun

2018-12-11 ⋅ Cyware ⋅ Sophia Brown
New Satan ransomware variant ‘Lucky’ exposes 10 server-side vulnerabilities
Satan

2018-12-10 ⋅ Botconf ⋅ Jakub Souček, Jakub Tomanek, Peter Kálnai
Collecting Malicious Particles from Neutrino Botnets
Neutrino

2018-12-10 ⋅ Vitali Kremez Blog ⋅ Vitali Kremez
Let's Learn: Reviewing Sofacy's "Zebrocy" C++ Loader: Advanced Insight
Zebrocy

2018-12-10 ⋅ Symantec ⋅ Symantec DeepSight Adversary Intelligence Team
Seedworm: Group Compromises Government Agencies, Oil & Gas, NGOs, Telecoms, and IT Firms
MuddyWater