Malpedia Library

Click here to download all references as Bib-File.•

2017-10-04 ⋅ Twitter (@JohnLaTwC) ⋅ John Lambert
Tweet on Turla JS backdoor
Maintools.js

2017-09-22 ⋅ Kaspersky Labs ⋅ John Snow
NRansom: Ransomware that demands your nudes
nRansom

2017-08-18 ⋅ Trend Micro ⋅ John Sanchez
KOVTER: An Evolving Malware Gone Fileless
Kovter

2017-04-10 ⋅ Symantec ⋅ A L Johnson
Longhorn: Tools used by cyberespionage group linked to Vault 7
Lambert Longhorn

2017-02-27 ⋅ Symantec ⋅ A L Johnson
Shamoon: Multi-staged destructive attacks limited to specific targets
DistTrack MimiKatz Rocket Kitten

2017-02-12 ⋅ Symantec ⋅ A L Johnson
Attackers target dozens of global banks with new malware
Ratankba Lazarus Group

2017-02-12 ⋅ Symantec ⋅ A L Johnson
Attackers target dozens of global banks with new malware
Joanap Ratankba Sierra(Alfa,Bravo, ...) Lazarus Group

2016-11-30 ⋅ Symantec ⋅ A L Johnson
Shamoon: Back from the dead and destructive as ever
DistTrack OilRig

2016-11-17 ⋅ CitizenLab ⋅ Adam Hulcoop, Etienne Maynier, John Scott-Railton, Masashi Crete-Nishihata, Matt Brooks
It’s Parliamentary - KeyBoy and the targeting of the Tibetan Community
KeyBoy

2016-08-08 ⋅ Symantec ⋅ A L Johnson
Strider: Cyberespionage group turns eye of Sauron on targets
Flame Regin Remsec ProjectSauron

2016-05-29 ⋅ CitizenLab ⋅ Bill Marczak, John Scott-Railton
Keep Calm and (Don’t) Enable Macros: A New Threat Actor Targets UAE Dissidents
Stealth Falcon

2016-05-02 ⋅ John Bambenek ⋅ John Bambenek
OSINT Feed
Mirai Banjori

2016-02-22 ⋅ Symantec ⋅ A L Johnson
Russian bank employees received fake job offers in targeted email attack
Buhtrap BuhTrap

2016-01-12 ⋅ FireEye ⋅ Barry Vengerik, John Miller
The Magnificent FIN7: Revealing a Cybercriminal Threat Group
BABYMETAL

2015-12-08 ⋅ The Citizenlab ⋅ Claudio Guarnieri, John Scott-Railton, Marion Marschalek, Morgan Marquis-Boire
Packrat: Seven Years of a South American Threat Actor
AdWind Adzok CyberGate Xtreme RAT Packrat

2015-10-26 ⋅ Symantec ⋅ A L Johnson
Duuzer back door Trojan targets South Korea to take over computers
Brambul Duuzer Joanap Lazarus Group

2015-08-27 ⋅ CitizenLab ⋅ John Scott-Railton, Katie Kleemola
London Calling: Two-Factor Authentication Phishing From Iran
Rocket Kitten

2015-07-13 ⋅ Symantec ⋅ A L Johnson
“Forkmeiamfamous”: Seaduke, latest weapon in the Duke armory
SEADADDY

2014-04-18 ⋅ Trend Micro ⋅ Alvin John Nieto
TROJ64_WOWLIK.VT
Alureon

2013-02-19 ⋅ Symantec ⋅ A L Johnson
APT1: Q&A on Attacks by the Comment Crew
APT1

2012-09-06 ⋅ Broadcom ⋅ A L Johnson
The Elderwood Project
Beijing Group

2012-06-04 ⋅ John Leyden
Small banking Trojan poses major risk
Tinba

2011-06-29 ⋅ Symantec ⋅ John McDonald
Inside a Back Door Attack
Ghost RAT Dust Storm

2011-06-29 ⋅ Symantec ⋅ John McDonald
Inside a Back Door Attack
Dust Storm

2009-12-22 ⋅ Symantec ⋅ John McDonald, Masaki Suenaga, Takayoshi Nakayama
Qakbot, Data Thief Unmasked: Part II
QakBot