Malpedia Library

Click here to download all references as Bib-File.•

2023-12-27 ⋅ ⋅ Wezard4u ⋅ Sakai
Malicious code impersonating the National Tax Service created by Konni
Konni

2023-12-26 ⋅ Russian Panda Research Blog ⋅ RussianPanda
Pure Logs Stealer Fails to Impress
PureLogs Stealer

2023-12-26 ⋅ Github (VenzoV) ⋅ VenzoV
Pikabot Loader analysis, round 2!
Pikabot

2023-12-24 ⋅ Barracuda ⋅ Barracuda
Barracuda Email Security Gateway Appliance (ESG) Vulnerability
UNC4841

2023-12-23 ⋅ Barracuda ⋅ Kevin Williams
Scattered Spider spins a troublesome web

2023-12-22 ⋅ SOCRadar ⋅ SOCRadar
Dark Peep #7: Shadows of Betrayal and Leadership in Flux
SkidSec

2023-12-22 ⋅ PRODAFT ⋅ PRODAFT
Smoke and Mirrors: Understanding The Workings of Wazawaka
Conti Monti Babuk Hive LockBit RagnarLocker Trigona

2023-12-21 ⋅ Martin Clauß, Valentin Obst
BPF Memory Forensics with Volatility 3
BPFDoor TripleCross

2023-12-21 ⋅ Fortinet ⋅ Pei Han Liao
Bandook - A Persistent Threat That Keeps Evolving
Bandook

2023-12-21 ⋅ Proofpoint ⋅ Axel F, Dusty Miller, Selena Larson, Tommy Madjar
BattleRoyal, DarkGate Cluster Spreads via Email and Fake Browser Updates
DarkGate

2023-12-21 ⋅ ThreatFabric ⋅ ThreatFabric
Android Banking Trojan Chameleon can now bypass any Biometric Authentication
Chameleon

2023-12-21 ⋅ Seqrite ⋅ Sathwik Ram Prakki
Operation RusticWeb targets Indian Govt: From Rust-based malware to Web-service exfiltration
Ares Unidentified 112 (Rust-based Stealer)

2023-12-20 ⋅ Intezer ⋅ Nicole Fishbein, Ryan Robinson
Operation HamsaUpdate: A Sophisticated Campaign Delivering Wipers Puts Israeli Infrastructure at Risk
FlashDevelop Handala Hatef Handala

2023-12-20 ⋅ Viuleeenz ⋅ Alessandro Strino
Applied Emulation - Decrypting Ursnif strings with Unicorn
Gozi

2023-12-20 ⋅ ThreatMon ⋅ Kerime Gencay
GhostLocker Ransomware Analysis Report (Paywall)
GhostLocker

2023-12-20 ⋅ Sophos X-Ops ⋅ Mark Loman, Matt Wixey
CryptoGuard: An asymmetric approach to the ransomware battle
Akira LockBit Storm-1567

2023-12-20 ⋅ ropgadget.com ⋅ Jeff White
The Origin of OriginLogger & Agent Tesla
Agent Tesla OriginLogger

2023-12-20 ⋅ Twitter (@embee_research) ⋅ Embee_research
Defeating Obfuscated Malware Scripts - Cobalt Strike
Cobalt Strike

2023-12-19 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Seedworm: Iranian Hackers Target Telecoms Orgs in North and East Africa
MuddyC2Go

2023-12-19 ⋅ Twitter (@embee_research) ⋅ Embee_research
Free Ghidra Tutorials for Beginners
Cobalt Strike DarkGate