Malpedia Library

Click here to download all references as Bib-File.•

2019-01-01 ⋅ Virus Bulletin ⋅ Gabriela Nicolao
Inside Formbook infostealer
Formbook

2019-01-01 ⋅ Virus Bulletin ⋅ Maddie Stone
Unpacking the packed unpacker: reversing an Android anti-analysis native library
Chamois

2019-01-01 ⋅ CSIS ⋅ Benoît Ancel, Peter Kruse
Dreambot Business overview 2019
ISFB

2018-12-31 ⋅ Github Repository ⋅ Frank Boldewin
FastCashMalwareDissected
FastCash

2018-12-30 ⋅ Github (Tomasuh) ⋅ Tomasuh
Retefe unpacker
Retefe

2018-12-29 ⋅ Los Angeles Times ⋅ Emily Alpert Reyes, Meg James, Tony Barboza
Malware attack disrupts delivery of L.A. Times and Tribune papers across the U.S.
Ryuk

2018-12-28 ⋅ ⋅ Netlab ⋅ JiaYu
analysis of the infrastructure renewal and corresponding mode of transmission of the "double-gun" trojan horse

2018-12-25 ⋅ ⋅ Tencent ⋅ 腾讯电脑管家
BITTER/T-APT-17 reports on the latest attacks on sensitive agencies such as military, nuclear, and government agencies in China
Artra Downloader

2018-12-24 ⋅ fumik0 blog ⋅ fumik0
Let’s dig into Vidar – An Arkei Copycat/Forked Stealer (In-depth analysis)
Arkei Stealer Vidar

2018-12-24 ⋅ Twitter (@MrDanPerez) ⋅ Dan Perez
Tweet on hashes for CROSSWALK
CROSSWALK

2018-12-21 ⋅ Morphisec ⋅ Michael Gorelik
FIN7 Not Finished - Morphisec Spots New Campaign
FIN7

2018-12-21 ⋅ Emanuele De Lucia
APT28 / Sofacy – SedUploader under the Christmas tree
Seduploader

2018-12-21 ⋅ Vitali Kremez
Let's Learn: In-Depth on APT28/Sofacy Zebrocy Golang Loader
Zebrocy

2018-12-21 ⋅ FireEye ⋅ Alex Orleans, Andrew Thompson, Geoff Ackerman, Nick Carr, Rick Cole
OVERRULED: Containing a Potentially Destructive Adversary
POWERTON PoshC2 pupy

2018-12-20 ⋅ Yoroi ⋅ Antonio Pirozzi, Davide Testa, Luca Mella, Luigi Martire
Dissecting the Danabot Payload Targeting Italy
DanaBot

2018-12-20 ⋅ ⋅ Codercto ⋅ Codercto
Analysis of the attack activities of Hailian Lotus APT group against large domestic investment companies
CACTUSTORCH

2018-12-20 ⋅ Objective-See ⋅ Patrick Wardle
Middle East Cyber-Espionage: analyzing WindShift's implant: OSX.WindTail (part 1)
WindTail

2018-12-20 ⋅ Trend Micro ⋅ Augusto Remillano II, Mark Vicente
With Mirai Comes Miori: IoT Botnet Delivered via ThinkPHP Remote Code Execution Exploit
Mirai

2018-12-20 ⋅ FBI ⋅ FBI
Chinese Hackers Indicted - Members of APT 10 Group Targeted Intellectual Property and Confidential Business Information
APT10

2018-12-19 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi
Analysis of Smoke Loader in New Tsunami Campaign
SmokeLoader