Malpedia Library

Click here to download all references as Bib-File.•

2018-03-08 ⋅ Avast ⋅ Threat Intelligence Team
New investigations into the CCleaner incident point to a possible third stage that had keylogger capacities
CCleaner Backdoor

2018-03-08 ⋅ Kaspersky Labs ⋅ GReAT
The devil’s in the Rich header
Olympic Destroyer

2018-03-08 ⋅ Kaspersky Labs ⋅ GReAT
OlympicDestroyer is here to trick the industry
Olympic Destroyer

2018-03-08 ⋅ NetScout ⋅ Dennis Schwarz, Hardik Modi, Jill Sopko, Richard Hummel
Donot Team Leverages New Modular Malware Framework in South Asia
VICEROY TIGER

2018-03-08 ⋅ McAfee ⋅ Asheer Malhotra, Charles Crawford, Jessica Saavedra-Morales, Ryan Sherstobitoff
Hidden Cobra Targets Turkish Financial Sector With New Bankshot Implant
Lazarus Group

2018-03-07 ⋅ InfoSec Handlers Diary Blog ⋅ Brad Duncan
Ransomware news: GlobeImposter gets a facelift, GandCrab is still out there
Gandcrab GlobeImposter

2018-03-07 ⋅ Proofpoint ⋅ Proofpoint Staff
Leaked Ammyy Admin Source Code Turned into Malware
FlawedAmmyy QuantLoader

2018-03-07 ⋅ Palo Alto Networks Unit 42 ⋅ Brandon Levene, Brittany Ash, Josh Grunzweig
Patchwork Continues to Deliver BADNEWS to the Indian Subcontinent
BadNews

2018-03-06 ⋅ Twitter (@demonslay335) ⋅ Michael Gillespie
Tweet on Cryakl
Cryakl

2018-03-06 ⋅ Shusei Tomonaga
Malware “TSCookie”
PLEAD

2018-03-06 ⋅ Cisco Talos ⋅ Adam Weller, Edmund Brumaghin, Holger Unterbrink
Gozi ISFB Remains Active in 2018, Leverages "Dark Cloud" Botnet For Distribution
ISFB

2018-03-05 ⋅ Confiant ⋅ Jerome Dangu
Zirconium was one step ahead of Chrome’s redirect blocker with 0-day
HURRICANE PANDA

2018-03-05 ⋅ Github (TKCERT) ⋅ TKCERT
Suricata rules to detect Winnti communication
Winnti

2018-03-05 ⋅ Palo Alto Networks Unit 42 ⋅ Brandon Levene, Josh Grunzweig
Sure, I’ll take that! New ComboJack Malware Alters Clipboards to Steal Cryptocurrency
Combojack

2018-03-04 ⋅ Youtube (OALabs) ⋅ Sergei Frankoff
Unpacking Gootkit Malware With IDA Pro and X64dbg - Subscriber Request
Cold$eal GootKit

2018-03-02 ⋅ eideon blog ⋅ Twitter (@darkquassar)
Tales of a Threat Hunter 2 Following the trace of WMI Backdoors & other nastiness

2018-03-02 ⋅ Reaqta ⋅ Reaqta
Spear-phishing campaign leveraging on MSXSL
More_eggs

2018-03-02 ⋅ McAfee ⋅ Ryan Sherstobitoff
McAfee Uncovers Operation Honeybee, a Malicious Document Campaign Targeting Humanitarian Aid Groups
Honeybee

2018-03-02 ⋅ KrabsOnSecurity ⋅ Mr. Krabs
Analysing Remcos RAT’s executable
Remcos

2018-03-02 ⋅ McAfee ⋅ Asheer Malhotra, Jessica Saavedra-Morales, Ryan Sherstobitoff, Thomas Roccia
McAfee Uncovers Operation Honeybee, a Malicious Document Campaign Targeting Humanitarian Aid Groups
Syscon