Malpedia Library

Click here to download all references as Bib-File.•

2024-01-14 ⋅ SecurityScorecard ⋅ SecurityScorecard STRIKE Team
Operation 99: North Korean State Sponsored Supply Chain Attack on Tech Innovation

2024-01-13 ⋅ YouTube (Embee Research) ⋅ Embee_research
Cobalt Strike Shellcode Analysis and C2 Extraction
Cobalt Strike

2024-01-12 ⋅ cyble ⋅ Cyble
Sneaky Azorult Back in Action and Goes Undetected
Azorult

2024-01-12 ⋅ YouTube (BSides Cambridge UK) ⋅ Cian Heasley
Slipping The Net: Qakbot, Emotet And Defense Evasion
Emotet QakBot

2024-01-12 ⋅ Trend Micro ⋅ Aliakbar Zahravi, Peter Girnus, Simon Zuckerbraun
CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign
Phemedrone Stealer

2024-01-12 ⋅ Spamhaus ⋅ Spamhaus Malware Labs
Spamhaus Botnet Threat Update Q4 2023
FluBot Hook FAKEUPDATES AsyncRAT BianLian Cobalt Strike DCRat Havoc IcedID Lumma Stealer Meterpreter NjRAT Pikabot QakBot Quasar RAT RecordBreaker RedLine Stealer Remcos Rhadamanthys Sliver

2024-01-12 ⋅ Mandiant ⋅ Dimiter Andonov, Gabby Roncone, John Wolfram, Matt Lin, Robert Wallace, Tyler McLellan
Cutting Edge: Suspected APT Targets Ivanti Connect Secure VPN in New Zero-Day Exploitation
UTA0178

2024-01-11 ⋅ Rewterz Information Security ⋅ Rewterz Information Security
Rewterz Threat Update – Pro-Ukraine Hacktivists Breach Russian ISP as Revenge for KyivStar Attack
BlackJack

2024-01-11 ⋅ Cybercrime Diaries ⋅ Oleg
Russian Language Cybercriminal Forums - Steep Investments And Hefty Profits.

2024-01-11 ⋅ SecurityScorecard ⋅ SecurityScorecard STRIKE Team
Volt Typhoon Compromises 30% of Cisco RV320/325 Devices in 37 Days

2024-01-11 ⋅ Forescout ⋅ Jos Wetzels
Clearing the Fog of War – A critical analysis of recent energy sector cyberattacks in Denmark and Ukraine

2024-01-10 ⋅ Volexity ⋅ Matthew Meltzer, Robert Jan Mora, Sean Koessel, Steven Adair, Thomas Lancaster
Active Exploitation of Two Zero-Day Vulnerabilities in Ivanti Connect Secure VPN
UTA0178

2024-01-10 ⋅ Medium knight0x07 ⋅ 0x4427, knight0x07
Analyzing APT28’s OCEANMAP Backdoor & Exploring its C2 Server Artifacts
OCEANMAP

2024-01-10 ⋅ Malwarebytes ⋅ Jérôme Segura
Atomic Stealer rings in the new year with updated version
AMOS

2024-01-10 ⋅ SecurityScorecard ⋅ STRIKE Team
Volt Typhoon Compromises 30% of Cisco RV320/325 Devices in 37 Days
KV

2024-01-10 ⋅ Akamai ⋅ Stiv Kupchik
You Had Me at Hi — Mirai-Based NoaBot Makes an Appearance
NoaBot

2024-01-10 ⋅ Medium icebre4ker ⋅ Francesco Iubatti
Analysis of an Info Stealer — Chapter 2: The iOS App

2024-01-09 ⋅ Anonymous
SSLoad
SSLoad

2024-01-09 ⋅ 0x0d4y ⋅ 0x0d4y
IcedID – Technical Malware Analysis [Second Stage]
IcedID PhotoLoader

2024-01-09 ⋅ Securonix ⋅ Den Iyzvyk, Oleg Kolesnikov, Tim Peck
New RE#TURGENCE Attack Campaign: Turkish Hackers Target MSSQL Servers to Deliver Domain-Wide MIMIC Ransomware
Mimic Ransomware