Malpedia Library

Click here to download all references as Bib-File.•

2024-07-13 ⋅ cocomelonc ⋅ cocomelonc
Malware development: persistence - part 25. Create symlink from legit to evil. Simple C example.

2024-07-11 ⋅ Orange Cyberdefense ⋅ Simon Vernin
R0BL0CH0N TDS: A deep dive into the infrastructure of an affiliate marketing scam

2024-07-11 ⋅ Google ⋅ DianaE
Finding Malware: Detecting EMPTYSPACE with Google Security Operations
Vetta Loader

2024-07-11 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
MoonWalk: A deep dive into the updated arsenal of APT41 | Part 2
MoonWalk

2024-07-11 ⋅ sysdig ⋅ Miguel Hernández
CRYSTALRAY: Inside the Operations of a Rising Threat Actor Exploiting OSS Tools
CRYSTALRAY

2024-07-11 ⋅ McAfee ⋅ Vignesh Dhatchanamoorthy, Yashvi Shah
ClickFix Deception: A Social Engineering Tactic to Deploy Malware
DarkGate Lumma Stealer

2024-07-11 ⋅ NCSC Switzerland ⋅ NCSC Switzerland
Brief technical analysis of the "Poseidon Stealer" malware
Poseidon Stealer

2024-07-10 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
DodgeBox: A deep dive into the updated arsenal of APT41 | Part 1
Cobalt Strike DUSTPAN DUSTTRAP

2024-07-10 ⋅ Akamai ⋅ Allen West, Kyle Lefton, Sam Tinklenberg
CVE-2024-4577 Exploits in the Wild One Day After Disclosure
Tsunami Ghost RAT xmrig

2024-07-10 ⋅ Risky.biz ⋅ Catalin Cimpanu
Risky Biz News: US takes down RT's Twitter bot farm
Lifting Zmiy

2024-07-09 ⋅ US Department of Justice ⋅ Office of Public Affairs
Justice Department Leads Efforts Among Federal, International, and Private Sector Partners to Disrupt Covert Russian Government-Operated Social Media Bot Farm

2024-07-09 ⋅ Twitter (@H4ckManac) ⋅ HackManac
Tweet on data breaches caused by 888 group
Threat Actor 888

2024-07-09 ⋅ Spamhaus ⋅ Spamhaus Malware Labs
Spamhaus Botnet Threat Update January to June 2024
Coper FluBot Hook Bashlite Mirai FAKEUPDATES AsyncRAT BianLian Cobalt Strike DCRat Havoc NjRAT QakBot Quasar RAT RedLine Stealer Remcos Rhadamanthys RisePro Sliver

2024-07-09 ⋅ TG Soft ⋅ Gianfranco Tonello, Michele Zuin
Italian government agencies and companies in the target of a Chinese APT
9002 RAT

2024-07-08 ⋅ Kaspersky Labs ⋅ GReAT
CloudSorcerer – A new APT targeting Russian government entities
CloudSorcerer

2024-07-08 ⋅ ⋅ Solar 4RAYS ⋅ Solar 4RAYS
Lifting Zmiy: hacking SCADA controllers in pursuit of prime victims
Lifting Zmiy

2024-07-06 ⋅ unknown
xeno-RAT open-source remote access tool (RAT)
XenoRAT

2024-07-06 ⋅ abuse.ch ⋅ abuse.ch
PovertyStealer malware samples
Lumar

2024-07-05 ⋅ ⋅ Weixin ⋅ 360 Threat Intelligence Center
APT-C-26 (Lazarus) uses PyPI to attack Windows, Linux, and macOS platforms
SimpleTea SimpleTea

2024-07-05 ⋅ Cloudways ⋅ Abdul Rehman
Hacker Allegedly Leaks Data from Shopify Breach on BreachForums
Threat Actor 888