Malpedia Library

Click here to download all references as Bib-File.•

2023-05-02 ⋅ loginsoft ⋅ System-41
IcedID Malware: Traversing Through its Various Incarnations
IcedID

2023-05-02 ⋅ Trend Micro ⋅ Hara Hiroaki, Ted Lee
Attack on Security Titans: Earth Longzhi Returns With New Tricks
Croxloader SPHijacker Earth Longzhi

2023-05-01 ⋅ JPCERT/CC ⋅ Shusei Tomonaga
Attack trends related to the attack campaign DangerousPassword
RustBucket CageyChameleon Cur1Downloader SnatchCrypto

2023-05-01 ⋅ Check Point Research ⋅ Check Point Research
Chain Reaction: RokRAT's Missing Link
Amadey RokRAT

2023-04-28 ⋅ ⋅ Cert-UA ⋅ Cert-UA
APT28 cyberattack: distribution of emails with "instructions" on "updating the operating system" (CERT-UA#6562)
Mocky LNK

2023-04-27 ⋅ VMRay ⋅ VMRay Labs Team
CatB Ransomware: A New Threat Exploiting DLL Side-Loading
CatB

2023-04-27 ⋅ ReversingLabs ⋅ Carolynn van Arsdale
The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries
Zarya

2023-04-27 ⋅ cocomelonc ⋅ cocomelonc
Malware development trick - part 27: WinAPI LoadLibrary implementation. Simple C++ example.

2023-04-27 ⋅ PRODAFT Threat Intelligence ⋅ PRODAFT
Nomadic Octopus’ Paperbug Campaign
Octopus DustSquad

2023-04-26 ⋅ Bitdefender ⋅ Martin Zugec
Unpacking BellaCiao: A Closer Look at Iran’s Latest Malware
BellaCiao

2023-04-26 ⋅ Uptycs ⋅ Uptycs Threat Research
RTM Locker Ransomware as a Service (RaaS) Now Suits Up for Linux Architecture
RTM Locker

2023-04-26 ⋅ United States District Court (Southern District of New York) ⋅ Google
CryptBot complaint against Zubair Saeed, Raheel Arshad and Mohammad Rasheed Siddiqui
CryptBot

2023-04-26 ⋅ cyble ⋅ Cyble
Threat Actor Selling New Atomic macOS (AMOS) Stealer on Telegram
AMOS

2023-04-26 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Chinese Alloy Taurus Updates PingPull Malware
PingPull Sword2033

2023-04-26 ⋅ ESET Research ⋅ Facundo Muñoz
Evasive Panda APT group delivers malware via updates for popular Chinese software
MgBot BRONZE HIGHLAND

2023-04-26 ⋅ AhnLab ⋅ bghjmun
RokRAT Malware Distributed Through LNK Files (*.lnk): RedEyes (ScarCruft)
RokRAT

2023-04-26 ⋅ eSentire ⋅ Joe Stewart, Keegan Keplinger
Gootloader Unloaded: Researchers Launch Multi-Pronged Offensive Against Gootloader, Cutting Off Traffic to Thousands of Gootloader Web Pages and Using the Operator’s Very Own Tactics to Protect End-Users
GootLoader

2023-04-24 ⋅ Trend Micro ⋅ Don Ovid Ladores
ViperSoftX Updates Encryption, Steals Data
ViperSoftX

2023-04-24 ⋅ Immersive Labs ⋅ Kevin Breen
Detecting and decrypting Sliver C2 – a threat hunter’s guide
Sliver

2023-04-24 ⋅ Cofense ⋅ Austin Jones
Open-Source Gh0st RAT Still Haunting Inboxes 15 Years After Release
Ghost RAT