Malpedia Library

Click here to download all references as Bib-File.•

2023-11-10 ⋅ Kaspersky Labs ⋅ AMR
Ducktail fashion week
DUCKTAIL

2023-11-10 ⋅ ⋅ AhnLab ⋅ ASEC Analysis Team
Detection of attacks exploiting asset management software (Andariel Group)
Lilith Tiger RAT

2023-11-10 ⋅ NSFOCUS ⋅ NSFOCUS
The New APT Group DarkCasino and the Global Surge in WinRAR 0-Day Exploits
Cobalt Strike Konni DarkCasino Opal Sleet

2023-11-10 ⋅ ⋅ HAURI ⋅ HAURI
Detailed analysis report: Malware disguised as Putty (Lazarus APT)
ComeBacker

2023-11-09 ⋅ Mandiant ⋅ Chris Sistrunk, Daniel Kapellmann Zafra, Jared Wilson, John Wolfram, Keith Lunden, Ken Proska, Nathan Brubaker, Tyler McLellan
Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology
CaddyWiper

2023-11-09 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Microsoft shares threat intelligence at CYBERWARCON 2023
Blue Tsunami

2023-11-09 ⋅ SOC Prime ⋅ Daryna Olyniychuk
Agonizing Serpens Attack Detection: Iran-Backed Hackers Target Israeli Tech Firms and Educational Institutions
Pink Sandstorm

2023-11-09 ⋅ Kaspersky Labs ⋅ Alexander Kirichenko, Kirill Mitrofanov, Natalya Shornikova, Nikita Nazarov, Sergey Kireev, Vasily Berdnikov, Vladislav Burtsev
Modern Asian APT Groups

2023-11-09 ⋅ CYBERWARZONE ⋅ Tech Team
Tasnim News Hacked By WeRedEvils
WeRedEvils

2023-11-09 ⋅ CrowdStrike ⋅ Counter Adversary Operations
IMPERIAL KITTEN Deploys Novel Malware Families in Middle East-Focused Operations
IMAPLoader

2023-11-08 ⋅ Deep instinct ⋅ Deep Instinct Threat Lab, Simon Kenin
MuddyC2Go – Latest C2 Framework Used by Iranian APT MuddyWater Spotted in Israel
PhonyC2 MuddyC2Go

2023-11-07 ⋅ Youtube (Virus Bulletin) ⋅ Daniel Lunghi
Possible supply chain attack targeting South Asian government delivers Shadowpad
ShadowPad

2023-11-07 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 37: Enumerate process modules via VirtualQueryEx. Simple C++ example.

2023-11-07 ⋅ SOCRadar ⋅ SOCRadar
New Gootloader Variant “GootBot” Changes the Game in Malware Tactics
GootLoader Cobalt Strike UNC2565

2023-11-06 ⋅ Palo Alto Networks Unit 42 ⋅ Assaf Dahan, Daniel Frank, Or Chechik, Tom Fakterman
Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors
Apostle Pink Sandstorm

2023-11-06 ⋅ Twitter (@embee_research) ⋅ Embee_research
Unpacking Malware With Hardware Breakpoints - Cobalt Strike
Cobalt Strike

2023-11-06 ⋅ The Record ⋅ Daryna Antoniuk
Iran-linked hackers attack Israeli education and tech organizations
Pink Sandstorm

2023-11-06 ⋅ Security Intelligence ⋅ Golo Mühr, Ole Villadsen
GootBot – Gootloader’s new approach to post-exploitation
GootLoader UNC2565

2023-11-06 ⋅ VMWare Carbon Black ⋅ Abe Schneider, Alan Ngo, Bria Beathley, Swee Lai Lee
Jupyter Rising: An Update on Jupyter Infostealer
solarmarker

2023-11-06 ⋅ Seqrite ⋅ Sathwik Ram Prakki
SideCopy’s Multi-platform Onslaught: Leveraging WinRAR Zero-Day and Linux Variant of Ares RAT
Action RAT AllaKore