Malpedia Library

Click here to download all references as Bib-File.•

2023-09-11 ⋅ Github (m4now4r) ⋅ m4n0w4r
Unveiling Qakbot Exploring one of the Most Active Threat Actors
QakBot

2023-09-11 ⋅ NCC Group ⋅ Alberto Segura, Joshua Kamp
From ERMAC to Hook: Investigating the technical differences between two Android malware variants
ERMAC Hook

2023-09-11 ⋅ Fortinet ⋅ Cara Lin
OriginBotnet Spreads via Malicious Word Document
OriginBot

2023-09-11 ⋅ AhnLab ⋅ Sanseo
BlueShell Used in APT Attacks Against Korean and Thai Targets
BlueShell Sliver Dalbit

2023-09-11 ⋅ Twitter (@Artilllerie) ⋅ @Artilllerie
Tweet on BumbleBee sample containing a DGA
BumbleBee

2023-09-11 ⋅ Symantec ⋅ Symantec Threat Intelligence
Tweet about Symantec discovering a new variant of SiestaGraph
SiestaGraph

2023-09-11 ⋅ Kaspersky ⋅ Alexander Kirichenko, Gleb Ivanov
From Caribbean shores to your devices: analyzing Cuba ransomware
Cuba

2023-09-08 ⋅ PolySwarm Tech Team ⋅ The Hivemind
Carderbee Targets Hong Kong in Supply Chain Attack
PlugX Carderbee

2023-09-08 ⋅ K7 Security ⋅ Sudeep Waingankar
RomCom RAT: Not Your Typical Love Story
ROMCOM RAT RomCom

2023-09-08 ⋅ Zscaler ⋅ Zscaler
Technical Analysis of HijackLoader
HijackLoader

2023-09-08 ⋅ Gi7w0rm
Uncovering DDGroup — A long-time threat actor
AsyncRAT Ave Maria BitRAT DBatLoader NetWire RC Quasar RAT XWorm

2023-09-07 ⋅ SecurityIntelligence ⋅ Claire Zaboeva, Golo Mühr, Melissa Frydrych
New Hive0117 phishing campaign imitates conscription summons to deliver DarkWatchman malware
DarkWatchman

2023-09-07 ⋅ KNF CSIRT ⋅ Karol Paciorek
RANSOMED[.]VC - forum, ransomware or hacktivists?

2023-09-07 ⋅ PRODAFT ⋅ PRODAFT
PTI-257 (ex-Wizard Spider) - IOCs
LockBit LockBit

2023-09-07 ⋅ eSentire ⋅ eSentire
The Case of LummaC2 v4.0
Lumma Stealer

2023-09-07 ⋅ Twitter (@Intrisec) ⋅ CTI Intrinsec
Tweets on Bumblebee campaign spreading via Html smuggling downloading RAR archive with European Central Bank PDF lure and folder containing Bumblebee EXE payload.
BumbleBee

2023-09-07 ⋅ CISA ⋅ CISA
Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475
Meterpreter MimiKatz

2023-09-07 ⋅ Medium (@simone.kraus) ⋅ Simone Kraus
Critical Energy Infrastructure Facility Attack In Ukraine

2023-09-07 ⋅ Huntress Labs ⋅ Harlan Carvey
Evolution of USB-Borne Malware, Raspberry Robin
Raspberry Robin

2023-09-07 ⋅ Deform ⋅ Deform Team
The Infamous Mirai Trojan Evolves: New “Pandora” Variant Targets Android TVs
Mirai