Malpedia Library

2022-01-11 ⋅ Github (baderj) ⋅ Johannes Bader
Reimplementation of Expiro's DGA
m0yv

2022-01-09 ⋅ Github (xephora) ⋅ @x3ph1
Observed malicious IOCs for the ChromeLoader/CS_installer aka Choziosi Loader Malware
Choziosi Choziosi

2021-12-29 ⋅ Github (jeFF0Falltrades) ⋅ Jeff Archer
AsyncRAT Configuration Parser
AsyncRAT

2021-12-20 ⋅ Github (vithakur) ⋅ Vishal Thakur
STOP/DJVU Ransomware IOC List
STOP

2021-12-03 ⋅ Github (rivitna) ⋅ Andrey Zhdanov
Hive Demo and IoCs
Hive Hive

2021-12-03 ⋅ Trend Micro ⋅ Nitesh Surana
Vulnerabilities Exploited for Monero Mining Malware Delivered via GitHub, Netlify

2021-11-17 ⋅ Github (cube0x0) ⋅ cube0x0
GitHub - cube0x0 / SharpMapExec
SharpMapExec

2021-11-17 ⋅ Medium ThreatMiner ⋅ ThreatMiner
Android Trojan Targeting Korean Demographic using GitHub for C2
Unidentified APK 006

2021-11-14 ⋅ Github (gabrielcurrie) ⋅ Gabriel Currie
Ready for (nearly) anything: Five things to prepare for a cyber security incident

2021-10-27 ⋅ Github (h3xduck) ⋅ Marcos Bajo
Github Repo for TripleCross
TripleCross

2021-10-26 ⋅ Github (vc0RExor) ⋅ Aaron Jornet
Babuk Ransomware
Babuk

2021-10-04 ⋅ Github (OALabs) ⋅ OALabs
Reverse engineered the Hancitor DLL and built a static config extractor
Hancitor

2021-10-03 ⋅ Github (0xjxd) ⋅ Joel Dönne
SquirrelWaffle - From Maldoc to Cobalt Strike
Cobalt Strike Squirrelwaffle

2021-09-08 ⋅ Juniper ⋅ Paul Kimayong
Aggah Malware Campaign Expands to Zendesk and GitHub to Host Its Malware
Agent Tesla

2021-08-25 ⋅ Github (StrangerealIntel) ⋅ StrangerealIntel
FIN7 still active

2021-07-23 ⋅ Github (Lastline-Inc) ⋅ Pavankumar Chaudhari, Quentin Fois
YARA rules, IOCs and Scripts for extracting IcedID C2s
IcedID

2021-07-18 ⋅ Github (mvt-project) ⋅ mvt-project
Mobile Verification Toolkit

2021-07-18 ⋅ Github (AmnestyTech) ⋅ Amnesty International
NSO Group Pegasus Indicator of Compromise
Chrysaor

2021-07-05 ⋅ Github (f0wl) ⋅ Marius Genheimer
REvil Linux Configuration Extractor
REvil