Malpedia Library

Click here to download all references as Bib-File.•

2023-09-18 ⋅ Trend Micro ⋅ Jaromír Hořejší, Joseph Chen
Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement
SprySOCKS

2023-09-15 ⋅ paloalto Netoworks: Unit42 ⋅ Amer Elsad, Austin Dever, Kristopher Russo
Threat Group Assessment: Muddled Libra

2023-09-15 ⋅ Migeel.sk ⋅ Michal Strehovský
Reverse engineering natively-compiled .NET apps

2023-09-15 ⋅ CyberCX ⋅ Phill Moore, Suyash Tripathi, Yogesh Khatri, Zach Stanford
Weaponising VMs to bypass EDR – Akira ransomware
Akira

2023-09-14 ⋅ Sekoia ⋅ Livia Tibirna
Sekoia.io mid-2023 Ransomware Threat Landscape
8Base Akira Cactus Storm-1567

2023-09-14 ⋅ Deep instinct ⋅ Mark Vaitzman, Ron Ben Yizhak, Simon Kenin
Operation Rusty Flag – A Malicious Campaign Against Azerbaijanian Targets
Unidentified 110 (RustyFlag)

2023-09-13 ⋅ KrebsOnSecurity ⋅ Brian Krebs
FBI Hacker Dropped Stolen Airbus Data on 9/11
RedLine Stealer USDoD

2023-09-13 ⋅ Seebug Paper ⋅ Nan, XWS
Analysis of the recent offensive operations conducted by North Korean APT groups
Opal Sleet

2023-09-12 ⋅ FIRSTCON ⋅ Aditya K. Sood
Compromising the Keys to the Kingdom: Exfiltrating Data to Own and Operate the Exploited Systems (Slides)
Loki RAT SystemBC

2023-09-12 ⋅ Sekoia ⋅ Livia Tibirna, Maxime A
The Transportation sector cyber threat overview
Cyber Partisans

2023-09-12 ⋅ Security Intelligence ⋅ Golo Mühr, Kat Metrick, Ole Villadsen
Email campaigns leverage updated DBatLoader to deliver RATs, stealers
DBatLoader

2023-09-12 ⋅ Zscaler ⋅ Sudeep Singh
A peek into APT36’s updated arsenal
ElizaRAT

2023-09-11 ⋅ Github (m4now4r) ⋅ m4n0w4r
Unveiling Qakbot Exploring one of the Most Active Threat Actors
QakBot

2023-09-11 ⋅ NCC Group ⋅ Alberto Segura, Joshua Kamp
From ERMAC to Hook: Investigating the technical differences between two Android malware variants
ERMAC Hook

2023-09-11 ⋅ AhnLab ⋅ Sanseo
BlueShell Used in APT Attacks Against Korean and Thai Targets
BlueShell Sliver Dalbit

2023-09-11 ⋅ Kaspersky ⋅ Alexander Kirichenko, Gleb Ivanov
From Caribbean shores to your devices: analyzing Cuba ransomware
Cuba

2023-09-08 ⋅ PolySwarm Tech Team ⋅ The Hivemind
Carderbee Targets Hong Kong in Supply Chain Attack
PlugX Carderbee

2023-09-08 ⋅ K7 Security ⋅ Sudeep Waingankar
RomCom RAT: Not Your Typical Love Story
ROMCOM RAT RomCom

2023-09-08 ⋅ Zscaler ⋅ Zscaler
Technical Analysis of HijackLoader
HijackLoader

2023-09-07 ⋅ SecurityIntelligence ⋅ Claire Zaboeva, Golo Mühr, Melissa Frydrych
New Hive0117 phishing campaign imitates conscription summons to deliver DarkWatchman malware
DarkWatchman