Malpedia Library

Click here to download all references as Bib-File.•

2018-08-01 ⋅ FireEye ⋅ Barry Vengerik, Kimberly Goody, Nick Carr, Steve Miller
On the Hunt for FIN7: Pursuing an Enigmatic and Evasive Global Criminal Operation
BELLHOP POWERPIPE BABYMETAL SocksBot FIN7

2018-08-01 ⋅ CrowdStrike ⋅ Paul Moon
Arrests Put New Focus on CARBON SPIDER Adversary Group
FIN7

2018-07-31 ⋅ Medium Sebdraven ⋅ Sébastien Larinier
Malicious document targets Vietnamese officials
8.t Dropper PlugX 1937CN

2018-07-31 ⋅ Sophos Naked Security ⋅ Mark Stockley
SamSam: The (almost) $6 million ransomware
SamSam

2018-07-31 ⋅ SophosLabs Uncut ⋅ Andrew Brandt
SamSam guide to coverage
SamSam

2018-07-31 ⋅ SophosLabs Uncut ⋅ Andrew Brandt
Sophos releases SamSam ransomware report
SamSam

2018-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi, Vicky Ray
Bisonal Malware Used in Attacks Against Russia and South Korea
Korlia

2018-07-31 ⋅ Medium Sebdraven ⋅ Sébastien Larinier
Malicious document targets Vietnamese officials
8.t Dropper

2018-07-31 ⋅ Github (JPCERTCC) ⋅ JPCERT/CC
Scanner for CobaltStrike
Cobalt Strike

2018-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ Kaoru Hayashi, Vicky Ray
Bisonal Malware Used in Attacks Against Russia and South Korea

2018-07-31 ⋅ Cisco Talos ⋅ Vanja Svajcer
Multiple Cobalt Personality Disorder
More_eggs

2018-07-30 ⋅ Proofpoint ⋅ Proofpoint Staff
New version of AZORult stealer improves loading features, spreads alongside ransomware in new campaign
Azorult Hermes

2018-07-30 ⋅ Intrusiontruth ⋅ Intrusiontruth
Who is Mr Zheng?

2018-07-29 ⋅ Vitali Kremez Blog ⋅ Vitali Kremez
Let's Learn: In-Depth Reversing of Qakbot "qbot" Banker Part 1
QakBot

2018-07-29 ⋅ Sophos ⋅ Felix Weyne
AdKoob information thief targets Facebook ad purchase info
AdKoob

2018-07-28 ⋅ Bleeping Computer ⋅ Catalin Cimpanu
New Underminer Exploit Kit Discovered Pushing Bootkits and CoinMiners
Hidden Bee

2018-07-27 ⋅ SystemTek ⋅ SystemTek
Luoxk Malware – Exploiting CVE-2018-2893
luoxk

2018-07-27 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone, Tom Lancaster
New Threat Actor Group DarkHydrus Targets Middle East Government
RogueRobin DarkHydrus

2018-07-26 ⋅ Accenture Security ⋅ Bart Parys, Michael Yip
GOLDFIN: A Persistent Campaign Targeting CIS Countries with SOCKSBOT
SocksBot

2018-07-26 ⋅ IEEE Symposium on Security and Privacy (SP) ⋅ Alex C. Snoeren, Damon McCoy, Danny Yuxing Huang, Elie Bursztein, Jonathan Levin, Kirill Levchenko, Kylie McRoberts, Luca Invernizzi, Maxwell Matthaios Aliapoulios, Vector Guo Li
Tracking Ransomware End-to-end
Cerber Locky WannaCryptor