Malpedia Library

Click here to download all references as Bib-File.•

2022-01-24 ⋅ IBM ⋅ Charlotte Hammond, Itzik Chimino, Limor Kessem, Michael Gal, Segev Fogel
TrickBot Bolsters Layered Defenses to Prevent Injection Research
TrickBot

2022-01-20 ⋅ Morphisec ⋅ Michael Gorelik
Log4j Exploit Hits Again: Vulnerable VMWare Horizon Servers at Risk
Cobalt Strike

2022-01-19 ⋅ Recorded Future ⋅ Insikt Group®, Kenneth Allen, Morgan Clemens, Roderick Lee, Zachary Haver
The People's Liberation Army in the South China Sea: An Organizational Guide

2022-01-05 ⋅ ARMOR ⋅ Armor
Threat Intelligence Report: The Evolution of Doppel Spider from BitPaymer to Grief Ransomware
DoppelPaymer FriedEx

2022-01-01 ⋅ Symposium on Electronic Crime Research ⋅ Benjamin Brown, Damon McCoy, Ian W. Gray, Jack Cable, Vlad Cuiujuclu
Money Over Morals: A Business Analysis of Conti Ransomware
Conti Conti

2021-12-28 ⋅ Morphus Labs ⋅ Renato Marinho
Attackers are abusing MSBuild to evade defenses and implant Cobalt Strike beacons
Cobalt Strike

2021-12-22 ⋅ Aqua Nautilus ⋅ Assaf Morag
Stopping a DreamBus Botnet Attack with Aqua’s CNDR
DreamBus Kinsing

2021-12-12 ⋅ Cyber And Ramen blog ⋅ Mike R
More Flagpro, More Problems
Flagpro

2021-12-11 ⋅ Twitter (@vxunderground) ⋅ VX-Underground
Tweet on Gomorrah panel source code leak
Gomorrah stealer

2021-12-10 ⋅ Mississippi State University ⋅ DeMarcus M. Thomas Sr.
Detecting malware in memory with memory object relationships

2021-12-02 ⋅ ⋅ AhnLab ⋅ ASEC Analysis Team
Spreading AgentTesla through more sophisticated malicious PPT
Agent Tesla

2021-11-23 ⋅ Morphisec ⋅ Arnold Osipov, Hido Cohen
Babadeda Crypter targeting crypto, NFT, and DeFi communities
Babadeda BitRAT LockBit Remcos

2021-11-19 ⋅ IronNet ⋅ Morgan Demboski
Is a coordinated cyberattack brewing in the escalating Russian-Ukrainian conflict?

2021-11-18 ⋅ Qualys ⋅ Ghanshyam More
Conti Ransomware
Conti

2021-11-17 ⋅ ARMOR ⋅ Amer Elsad
Astaroth: Banking Trojan
Astaroth

2021-11-16 ⋅ IronNet ⋅ IronNet Threat Research, Joey Fitzpatrick, Morgan Demboski, Peter Rydzynski
How IronNet's Behavioral Analytics Detect REvil and Conti Ransomware
Cobalt Strike Conti IcedID REvil

2021-11-12 ⋅ CrowdStrike ⋅ Anmol Maurya
Golang Malware Is More than a Fad: Financial Motivation Drives Adoption
Snatch

2021-11-11 ⋅ AT&T ⋅ Ofer Caspi
AT&T Alien Labs finds new Golang malware (BotenaGo) targeting millions of routers and IoT devices with more than 30 exploits
BotenaGo

2021-11-04 ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
SSU identified FSB hackers who carried out more than 5,000 cyberattacks on state bodies of Ukraine (video)

2021-11-03 ⋅ nviso ⋅ Didier Stevens
Cobalt Strike: Using Process Memory To Decrypt Traffic – Part 3
Cobalt Strike