Malpedia Library

Click here to download all references as Bib-File.•

2020-05-01 ⋅ Macnica Networks ⋅ Macnica Networks, TeamT5
Cyber Espionage Tradecraft in the Real World Adversaries targeting Japan in the second half of 2019
TSCookie LODEINFO

2020-01-31 ⋅ Virus Bulletin ⋅ Michal Poslušný, Peter Kálnai
Rich Headers: leveraging this mysterious artifact of the PE format
Dridex Exaramel Industroyer Neutrino RCS Sathurbot

2020-01-24 ⋅ Github (TheEnergyStory) ⋅ R136a1
Project TajMahal IOCs and Registry Data Decrypter
Chaperone

2020-01-01 ⋅ FireEye ⋅ Mandiant, Mitchell Clarke, Tom Hall
Mandiant IR Grab Bag of Attacker Activity
TwoFace CHINACHOPPER HyperBro HyperSSL

2019-11-18 ⋅ CERT.PL ⋅ CERT.PL
Brushaloader gaining new layers like a pro
BrushaLoader

2019-10-10 ⋅ FireEye ⋅ Jeremy Kennelly, Jordan Nuce, Josh Yoder, Kimberly Goody, Nick Carr, Scott Runnels
Mahalo FIN7: Responding to the Criminal Operators’ New Tools and Techniques
BOOSTWRITE

2019-10-01 ⋅ ⋅ Macnica Networks ⋅ Macnica Networks
Trends in Cyber Espionage Targeting Japan 1st Half of 2019
PLEAD TSCookie Datper PLEAD

2019-07-22 ⋅ Proofpoint ⋅ Kafeine, Proofpoint Threat Insight Team
BrushaLoader still sweeping up victims one year later
BrushaLoader NARWHAL SPIDER

2019-05-28 ⋅ Fortinet ⋅ Joie Salvio
Threat Research: New Rocke Variant Ready to Box Any Mining Challengers
kerberods

2019-04-10 ⋅ Kaspersky Labs ⋅ AMR, GReAT
Project TajMahal – a sophisticated new APT framework
Chaperone

2019-04-05 ⋅ Medium vishal_thakur ⋅ Vishal Thakur
Trickbot — a concise treatise
TrickBot

2019-04-01 ⋅ ⋅ Macnica Networks ⋅ Macnica Networks
Trends in Cyber Espionage Targeting Japan 2nd Half of 2018
Anel Cobalt Strike Datper PLEAD Quasar RAT RedLeaves taidoor Zebrocy

2019-02-20 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Matthew Molyett, Nick Biasini
Combing Through Brushaloader Amid Massive Detection Uptick
BrushaLoader

2019-02-13 ⋅ Department of Justice ⋅ Office of Public Affairs
Former U.S. Counterintelligence Agent Charged With Espionage on Behalf of Iran; Four Iranians Charged With a Cyber Campaign Targeting Her Former Colleagues
Charming Kitten

2019-02-07 ⋅ Blueliv ⋅ Blueliv Labs Team
Sales of AZORult grind to an AZOR-halt
Azorult

2019-01-01 ⋅ MITRE ⋅ MITRE ATT&CK
Tool description: HALFBAKED
HALFBAKED

2018-12-04 ⋅ Avast ⋅ Adolf Středa, Jan Neduchal
Hide ‘N Seek botnet continues infecting devices with default credentials, building a P2P network and more.
Hide and Seek

2018-10-25 ⋅ enSilo ⋅ Chen Erlich, Yakov Goldberg
Game of Trojans: Dissecting the #Khalesi Infostealer Malware
KPOT Stealer

2018-10-22 ⋅ SophosLabs Uncut ⋅ Timothy Easton
Chalubo botnet wants to DDoS from your server or IoT device
Chalubo

2018-10-03 ⋅ Virus Bulletin ⋅ Michal Poslušný, Peter Kálnai
Lazarus Group A Mahjong Game Played with Different Sets of Tiles
Bankshot BanPolMex RAT FuwuqiDrama HOTWAX KillDisk (Lazarus) NACHOCHEESE REDSHAWL WannaCryptor