Malpedia Library

Click here to download all references as Bib-File.•

2020-09-21 ⋅ Cisco Talos ⋅ Joe Marshall, JON MUNSHAW, Nick Mavis
The art and science of detecting Cobalt Strike
Cobalt Strike

2020-08-06 ⋅ Trend Micro ⋅ Fyodor Yarochkin, Loseway Lu, Marshall Chen, Yorkbing Yap
Water Nue Phishing Campaign Targets C-Suite’s Office 365 Accounts

2020-07-28 ⋅ Medium (@vishal_thakur) ⋅ Vishal Thakur
LOLSnif Malware
LOLSnif

2020-07-25 ⋅ ⋅ ESTsecurity ⋅ Alyac
[Special Report] Thallium Group sued by Microsoft in the US, threatens 'Fake Striker' APT campaign against South Korea

2020-06-11 ⋅ Talos Intelligence ⋅ Joe Marshall, Kendall McKay
Tor2Mine is up to their old tricks — and adds a few new ones
Azorult Remcos

2020-05-01 ⋅ Macnica Networks ⋅ Macnica Networks, TeamT5
Cyber Espionage Tradecraft in the Real World Adversaries targeting Japan in the second half of 2019
TSCookie LODEINFO

2020-01-31 ⋅ Virus Bulletin ⋅ Michal Poslušný, Peter Kálnai
Rich Headers: leveraging this mysterious artifact of the PE format
Dridex Exaramel Industroyer Neutrino RCS Sathurbot

2020-01-24 ⋅ Github (TheEnergyStory) ⋅ R136a1
Project TajMahal IOCs and Registry Data Decrypter
Chaperone

2020-01-01 ⋅ FireEye ⋅ Mandiant, Mitchell Clarke, Tom Hall
Mandiant IR Grab Bag of Attacker Activity
TwoFace CHINACHOPPER HyperBro HyperSSL

2019-11-18 ⋅ CERT.PL ⋅ CERT.PL
Brushaloader gaining new layers like a pro
BrushaLoader

2019-10-10 ⋅ FireEye ⋅ Jeremy Kennelly, Jordan Nuce, Josh Yoder, Kimberly Goody, Nick Carr, Scott Runnels
Mahalo FIN7: Responding to the Criminal Operators’ New Tools and Techniques
BOOSTWRITE

2019-10-01 ⋅ ⋅ Macnica Networks ⋅ Macnica Networks
Trends in Cyber Espionage Targeting Japan 1st Half of 2019
PLEAD TSCookie Datper PLEAD

2019-07-22 ⋅ Proofpoint ⋅ Kafeine, Proofpoint Threat Insight Team
BrushaLoader still sweeping up victims one year later
BrushaLoader NARWHAL SPIDER

2019-05-28 ⋅ Fortinet ⋅ Joie Salvio
Threat Research: New Rocke Variant Ready to Box Any Mining Challengers
kerberods

2019-04-10 ⋅ Kaspersky Labs ⋅ AMR, GReAT
Project TajMahal – a sophisticated new APT framework
Chaperone

2019-04-05 ⋅ Medium vishal_thakur ⋅ Vishal Thakur
Trickbot — a concise treatise
TrickBot

2019-04-01 ⋅ ⋅ Macnica Networks ⋅ Macnica Networks
Trends in Cyber Espionage Targeting Japan 2nd Half of 2018
Anel Cobalt Strike Datper PLEAD Quasar RAT RedLeaves taidoor Zebrocy

2019-02-20 ⋅ Cisco Talos ⋅ Edmund Brumaghin, Matthew Molyett, Nick Biasini
Combing Through Brushaloader Amid Massive Detection Uptick
BrushaLoader

2019-02-13 ⋅ Department of Justice ⋅ Office of Public Affairs
Former U.S. Counterintelligence Agent Charged With Espionage on Behalf of Iran; Four Iranians Charged With a Cyber Campaign Targeting Her Former Colleagues
Charming Kitten

2019-02-07 ⋅ Blueliv ⋅ Blueliv Labs Team
Sales of AZORult grind to an AZOR-halt
Azorult