Malpedia Library

Click here to download all references as Bib-File.•

2023-09-22 ⋅ R136a1 ⋅ Dominik Reichel
More on DreamLand
LuaDream

2023-09-21 ⋅ Medium shaddy43 ⋅ Shayan Ahmed Khan
Secrets of commercial RATs! NanoCore dissected
Nanocore RAT

2023-09-21 ⋅ Security Onion ⋅ Security Onion
Quick Malware Analysis: PIKABOT INFECTION WITH COBALT STRIKE pcap from 2023-05-23
Pikabot

2023-09-21 ⋅ Sentinel LABS ⋅ Aleksandar Milenkoski, QGroup
Sandman APT | A Mystery Group Targeting Telcos with a LuaJIT Toolkit
LuaDream

2023-09-21 ⋅ Sentinel LABS ⋅ Tom Hegel
Cyber Soft Power | China’s Continental Takeover
Earth Estries

2023-09-20 ⋅ SOCRadar ⋅ SOCRadar
Unmasking USDoD: The Enigma of the Cyber Realm
RansomVC USDoD

2023-09-20 ⋅ Check Point Research ⋅ Checkpoint Research
Behind the Scenes of BBTok: Analyzing a Banker’s Server Side Components
BBtok

2023-09-19 ⋅ Recorded Future ⋅ Insikt Group
Multi-year Chinese APT Campaign Targets South Korean Academic, Government, and Political Entities
Korlia Tonto Team

2023-09-19 ⋅ Checkpoint ⋅ Alexey Bukhteyev, Arie Olshtein
Unveiling the Shadows: The Dark Alliance between GuLoader and Remcos
CloudEyE Remcos

2023-09-19 ⋅ Medium (@DCSO_CyTec) ⋅ Johann Aydinbas
#ShortAndMalicious — DarkGate
DarkGate

2023-09-18 ⋅ The Record ⋅ Jonathan Greig
"Scattered Spider" group launches ransomware attacks while expanding targets in hospitality, retail
RedLine Stealer

2023-09-18 ⋅ Alpine Security ⋅ Borja Merino
HijackLoader Targets Hotels: A Technical Analysis
HijackLoader

2023-09-18 ⋅ KrebsOnSecurity ⋅ Brian Krebs
Who's Behind the 8Base Ransomware Website?
8Base

2023-09-18 ⋅ SentinelOne ⋅ Alex Delamotte
CapraTube | Transparent Tribe’s CapraRAT Mimics YouTube to Hijack Android Phones
CapraRAT Operation C-Major

2023-09-18 ⋅ Trend Micro ⋅ Jaromír Hořejší, Joseph Chen
Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement
SprySOCKS

2023-09-15 ⋅ paloalto Netoworks: Unit42 ⋅ Amer Elsad, Austin Dever, Kristopher Russo
Threat Group Assessment: Muddled Libra

2023-09-15 ⋅ Migeel.sk ⋅ Michal Strehovský
Reverse engineering natively-compiled .NET apps

2023-09-15 ⋅ CyberCX ⋅ Phill Moore, Suyash Tripathi, Yogesh Khatri, Zach Stanford
Weaponising VMs to bypass EDR – Akira ransomware
Akira

2023-09-14 ⋅ Sekoia ⋅ Livia Tibirna
Sekoia.io mid-2023 Ransomware Threat Landscape
8Base Akira Cactus Storm-1567

2023-09-14 ⋅ Deep instinct ⋅ Mark Vaitzman, Ron Ben Yizhak, Simon Kenin
Operation Rusty Flag – A Malicious Campaign Against Azerbaijanian Targets
Unidentified 110 (RustyFlag)