Malpedia Library

Click here to download all references as Bib-File.•

2025-01-03 ⋅ SANS ISC ⋅ Xavier Mertens
SwaetRAT Delivery Through Python
SwaetRAT

2025-01-02 ⋅ Cyfirma ⋅ cyfirma
NonEuclid RAT
NonEuclid RAT

2024-12-30 ⋅ Fortinet ⋅ Chris Hall
Catching "EC2 Grouper"- no indicators required!
EC2 Grouper

2024-12-28 ⋅ Medium s.lontzetidis ⋅ Efstratios Lontzetidis
Lumma 2024: Dominating the Info-Stealer Market
Lumma Stealer

2024-12-26 ⋅ ⋅ Weixin ⋅ 360 Threat Intelligence Center
Analysis of the attack activities of APT-C-26 (Lazarus) using weaponized IPMsg software
ComeBacker

2024-12-24 ⋅ LinkedIn (Idan Tarab) ⋅ Idan Tarab
Under Siege: Sandworm's Fake Army+ App Threatens Ukraine’s Military Operations

2024-12-23 ⋅ FBI ⋅ DC3, FBI, NPA
FBI, DC3, and NPA Identification of North Korean Cyber Actors, Tracked as TraderTraitor, Responsible for Theft of $308 Million USD from Bitcoin.DMM.com

2024-12-20 ⋅ Orange Cyberdefense ⋅ Alexandre Matousek, Marine PICHON
Tweet on a variant of Emmenhtal
Emmenhtal

2024-12-19 ⋅ SpyCloud ⋅ James
LummaC2 Revisited: What’s Making this Stealer Stealthier and More Lethal
GhostSocks Lumma Stealer

2024-12-18 ⋅ Kaspersky Labs ⋅ Kaspersky
Analysis of Cyber Anarchy Squad attacks targeting Russian and Belarusian organizations
Babuk LockBit Revenge RAT SparkRAT Ukrainian Cyber Alliance

2024-12-18 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
Winos4.0 “Online Module” Staging Component Used in CleverSoar Campaign
ValleyRAT

2024-12-18 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Raccoon Stealer malware operator gets 5 years in prison after guilty plea
Raccoon RecordBreaker

2024-12-18 ⋅ KELA ⋅ KELA’s Research Team
Three Months After the Storm: Did Cybercriminals Move to Telegram Alternatives?

2024-12-17 ⋅ Trend Micro ⋅ Feike Hacquebord, Stephen Hilt
Earth Koshchei Coopts Red Team Tools in Complex RDP Attacks

2024-12-17 ⋅ Cybereason ⋅ Elena Odier, Gal Romano, Hema Loganathan, Ralph Villanueva
Your Data Is Under New Lummanagement: The Rise of LummaStealer
Lumma Stealer

2024-12-17 ⋅ Proofpoint ⋅ David Galazin, Konstantin Klinger, Nick Attfield, Pim Trouerbach
Hidden in Plain Sight: TA397’s New Attack Chain Delivers Espionage RATs
MiyaRAT WmRAT HAZY TIGER

2024-12-16 ⋅ Gdata ⋅ Banu Ramakrishnan
New I2PRAT communicates via anonymous peer-to-peer network
Unidentified 118

2024-12-16 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 36 - random sbox generation algorithms: Fisher-Yates shuffle. Simple C example.

2024-12-16 ⋅ Morphisec ⋅ Morphisec Labs, Nadav Lorber
CoinLurker: The Stealer Powering the Next Generation of Fake Updates
ClearFake FAKEUPDATES

2024-12-16 ⋅ Zscaler ⋅ ThreatLabZ research team
Technical Analysis of RiseLoader
RiseLoader