Malpedia Library

Click here to download all references as Bib-File.•

2018-09-19 ⋅ Antiy CERT
绿斑”行动——持续多年的攻击

2018-09-19 ⋅ Twitter (@LukasStefanko) ⋅ Lukáš Štefanko
Tweet on Android Proxy Malware: Clientor
Clientor

2018-09-19 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
Hex-Rays Microcode API vs. Obfuscating Compiler
Ghost RAT

2018-09-18 ⋅ Mandiant ⋅ Manish Sardiwal, Muhammad Umair, Zain Gardezi
Fallout Exploit Kit Used in Malvertising Campaign to Deliver GandCrab Ransomware
Gandcrab

2018-09-18 ⋅ int 0xcc blog ⋅ Raashid Bhat
A taste of our own medicine: How SmokeLoader is deceiving configuration extraction by using binary code as bait
SmokeLoader

2018-09-18 ⋅ Trend Micro ⋅ Joseph C Chen
Magecart Skimming Attack Targets Mobile Users of Hotel Chain Booking Websites
magecart

2018-09-18 ⋅ Cybereason ⋅ Cybereason Nocturnus
VAI MALANDRA: A LOOK INTO THE LIFECYCLE OF BRAZILIAN FINANCIAL MALWARE: PART ONE
Overlay RAT

2018-09-18 ⋅ The Citizenlab ⋅ Bahr Abdul Razzak, Bill Marczak, John Scott-Railton, Ron Deibert, Sarah McKune
Hide and Seek: Tracking NSO Group’s Pegasus Spyware to Operations in 45 Countries
Chrysaor

2018-09-17 ⋅ Palo Alto Networks Unit 42 ⋅ Claud Xiao, Cong Zheng, Xingyu Jin
Xbash Combines Botnet, Ransomware, Coinmining in Worm that Targets Linux and Windows
Xbash

2018-09-14 ⋅ Cybereason ⋅ Amit Serper
Wannamine cryptominer that uses EternalBlue still active
WannaMine

2018-09-14 ⋅ ⋅ ID Ransomware ⋅ Andrew Ivanov
Rektware Ransomware
Rektware

2018-09-14 ⋅ NetScout ⋅ ASERT Team
Tunneling Under the Sands
BONDUPDATER

2018-09-14 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Kraken Cryptor Ransomware Masquerading as SuperAntiSpyware Security Program
Kraken

2018-09-13 ⋅ FireEye ⋅ Ayako Matsuda, Irshad Muhammad
APT10 Targeting Japanese Corporations Using Updated TTPs
APT10

2018-09-12 ⋅ Cryptolaemus Pastedump ⋅ Cryptolaemus
Emotet IOC
Emotet

2018-09-12 ⋅ Palo Alto Networks Unit 42 ⋅ Kyle Wilhoit, Robert Falcone
OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government
OilRig

2018-09-12 ⋅ Flashpoint ⋅ Mike Mimoso, Paul Burbage
Malware Campaign Targeting Jaxx Cryptocurrency Wallet Users Shut Down
KPOT Stealer

2018-09-12 ⋅ Palo Alto Networks Unit 42 ⋅ Kyle Wilhoit, Robert Falcone
OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government
BONDUPDATER

2018-09-12 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Feedify Hacked with Magecart Information Stealing Script
MageCart

2018-09-11 ⋅ Sophos Naked Security ⋅ Mark Stockley
The Rise of Targeted Ransomware
Dharma FriedEx SamSam