Malpedia Library

Click here to download all references as Bib-File.•

2023-08-08 ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
Cyber Operation of Russian Intelligence Services as a Component of Confrontation on the Battlefield

2023-08-08 ⋅ Security Service of Ukraine ⋅ Security Service of Ukraine
SBU exposes russian intelligence attempts to penetrate Armed Forces' planning operations system

2023-08-07 ⋅ Recorded Future ⋅ Insikt Group
RedHotel: A Prolific, Chinese State-Sponsored Group Operating at a Global Scale
Winnti Brute Ratel C4 Cobalt Strike FunnySwitch PlugX ShadowPad Spyder Earth Lusca

2023-08-07 ⋅ Team Cymru ⋅ S2 Research Team
Visualizing Qakbot Infrastructure Part II: Uncharted Territory
QakBot

2023-08-07 ⋅ SentinelOne ⋅ Aleksandar Milenkoski, Tom Hegel
Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company
OpenCarrot

2023-08-06 ⋅ 0xToxin Labs ⋅ @0xToxin
DarkGate - Threat Breakdown Journey
DarkGate

2023-08-03 ⋅ OALabs ⋅ Sergei Frankoff
Golang Garble String Decryption
Bandit Stealer

2023-08-03 ⋅ Aon ⋅ Aon’s Cyber Labs
DarkGate Keylogger Analysis: Masterofnone
DarkGate

2023-08-03 ⋅ Kaspersky ⋅ Kaspersky
What’s happening in the world of crimeware: Emotet, DarkGate and LokiBot
LokiBot DarkGate Emotet

2023-08-03 ⋅ DARKReading ⋅ Nate Nelson
Russian APT 'BlueCharlie' Swaps Infrastructure to Evade Detection
Callisto

2023-08-02 ⋅ Recorded Future ⋅ Insikt Group
BlueCharlie, Previously Tracked as TAG-53, Continues to Deploy New Infrastructure in 2023
Callisto

2023-08-02 ⋅ Checkmarx ⋅ Yehuda Gelb
Lazarus Group Launches First Open Source Supply Chain Attacks Targeting Crypto Sector

2023-08-02 ⋅ Recorded Future ⋅ Insikt Group
BlueCharlie, Previously Tracked as TAG 53, Continues to Deploy New Infrastructure in 2023

2023-08-02 ⋅ Recorded Future ⋅ Insikt Group
BlueCharlie, Previously Tracked as TAG-53, Continues to Deploy New Infrastructure in 2023

2023-08-01 ⋅ Infinitum IT ⋅ Kerime Gencay
White Snake Stealer Analysis Report (Paywall)
WhiteSnake Stealer

2023-08-01 ⋅ ANALYST1 ⋅ Jon DiMaggio
Ransomware Diaries: Volume 3 – LockBit’s Secrets
LockBit

2023-08-01 ⋅ Palo Alto Networks Unit 42 ⋅ Lior Rochberger
NodeStealer 2.0 – The Python Version: Stealing Facebook Business Accounts
BitRAT NodeStealer XWorm

2023-08-01 ⋅ eSentire ⋅ eSentire Threat Response Unit (TRU)
BatLoader Continues Signed MSIX App Package Abuse
BATLOADER

2023-08-01 ⋅ LinkedIn (PRODAFT) ⋅ PRODAFT
An organic relationship between the #Rhysida and #ViceSociety ransomware teams
Rhysida

2023-08-01 ⋅ AhnLab ⋅ ASEC
Sliver C2 Being Distributed Through Korean Program Development Company
Sliver