Malpedia Library

Click here to download all references as Bib-File.•

2022-02-17 ⋅ Twitter (@Honeymoon_IoC) ⋅ Gi7w0rm
Tweets on win.prometei caught via Cowrie
Prometei

2022-02-15 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
Increase in Emotet Activity and Cobalt Strike Deployment
Cobalt Strike Emotet

2022-02-03 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Antlion: Chinese APT Uses Custom Backdoor to Target Financial Institutions in Taiwan
MimiKatz xPack Antlion

2022-01-31 ⋅ IBM ⋅ Itzik Chimino, Limor Kessem
Top-Ranking Banking Trojan Ramnit Out to Steal Payment Card Data
Ramnit

2022-01-31 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Shuckworm Continues Cyber-Espionage Attacks Against Ukraine
Pteranodon Gamaredon Group

2022-01-26 ⋅ Team Cymru ⋅ Josh Hopkins
Analysis of a Management IP Address linked to Molerats APT

2022-01-26 ⋅ Recorded Future ⋅ Insikt Group®
Threats to the 2022 Winter Olympics

2022-01-25 ⋅ Nozomi Networks ⋅ Alexey Kleymenov
How to Analyze Malware for Technical Writing
DarkSide

2022-01-20 ⋅ U.S. Department of the Treasury ⋅ U.S. Department of the Treasury
Treasury Sanctions Russian-Backed Actors Responsible for Destabilization Activities in Ukraine (Taras Kozak, Oleh Voloshyn, Volodymyr Oliynyk, Vladimir Sivkovich)

2022-01-05 ⋅ ARMOR ⋅ Armor
Threat Intelligence Report: The Evolution of Doppel Spider from BitPaymer to Grief Ransomware
DoppelPaymer FriedEx

2022-01-01 ⋅ Symposium on Electronic Crime Research ⋅ Benjamin Brown, Damon McCoy, Ian W. Gray, Jack Cable, Vlad Cuiujuclu
Money Over Morals: A Business Analysis of Conti Ransomware
Conti Conti

2021-12-23 ⋅ Symantec ⋅ Siddhesh Chandrayan
Log4j Vulnerabilities: Attack Insights
Tsunami Conti Dridex Khonsari Orcus RAT TellYouThePass

2021-12-16 ⋅ Symantec ⋅ Threat Hunter Team
Noberus: Technical Analysis Shows Sophistication of New Rust-based Ransomware
BlackCat

2021-12-14 ⋅ Symantec ⋅ Threat Hunter Team
Espionage Campaign Targets Telecoms Organizations across Middle East and Asia
MimiKatz

2021-12-11 ⋅ Symantec ⋅ Threat Hunter Team
Apache Log4j Zero-Day Being Exploited in the Wild
Kaiten

2021-12-07 ⋅ CrowdStrike ⋅ Shaun Hurley
Critical Hit: How DoppelPaymer Hunts and Kills Windows Processes
DoppelPaymer

2021-12-01 ⋅ Symantec ⋅ Symantec Threat Hunter Team
The Threat Landscape in 2021

2021-11-30 ⋅ Symantec ⋅ Symantec Threat Hunter Team
Yanluowang: Further Insights on New Ransomware Threat
BazarBackdoor Cobalt Strike FiveHands

2021-11-30 ⋅ Medium nusenu ⋅ nusenu
Is "KAX17" performing de-anonymization Attacks against Tor Users?
KAX17

2021-11-08 ⋅ U.S. Department of the Treasury ⋅ U.S. Department of the Treasury
Advisory on Ransomware and the Use of the Financial System to Facilitate Ransom Payments
REvil REvil