Malpedia Library

Click here to download all references as Bib-File.•

2021-04-12 ⋅ CISA ⋅ US-CERT
Analysis Report (AR21-102B): DearCry Ransomware
dearcry

2021-04-12 ⋅ Twitter (@elisalem9) ⋅ Eli Salem
Tweets on QakBot
QakBot

2021-04-06 ⋅ CISA ⋅ US-CERT
Malicious Cyber Activity Targeting Critical SAP Applications

2021-04-02 ⋅ CISA, FBI
Joint CSA AA21-092A: APT Actors Exploit Vulnerabilitiesto Gain Initial Access for Future Attacks

2021-04-01 ⋅ CISA ⋅ US-CERT
Defending Against Software Supply Chain Attacks

2021-03-18 ⋅ CISA ⋅ US-CERT
Alert (AA21-077A): Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool
SUNBURST

2021-03-18 ⋅ Github (cisagov) ⋅ CISA
CISA Hunt and Incident Response Program (CHIRP)
SUNBURST

2021-03-17 ⋅ CISA ⋅ US-CERT
SolarWinds and Active Directory/M365 Compromise: Detecting Advanced Persistent Threat Activity from Known Tactics, Techniques, and Procedures (Dead Link)
SUNBURST

2021-03-17 ⋅ CISA ⋅ US-CERT
Alert (AA21-076A): TrickBot Malware
TrickBot

2021-03-16 ⋅ Department of Homeland Security ⋅ CISA, Department of Homeland Security, Department of Justice
Foreign Interference Targeting Election Infrastructure or Political Organization, Campaign, or Candidate InfrastructureRelated to the 2020 US Related to the 2020 US Federal Elections

2021-03-10 ⋅ FBI ⋅ CISA, FBI
Compromise of Microsoft Exchange Server

2021-03-10 ⋅ US-CERT ⋅ CISA
Remediating Networks Affected by the SolarWinds and Active Directory/M365 Compromise
SUNBURST

2021-03-03 ⋅ CISA ⋅ US-CERT
Mitigate Microsoft Exchange On-Premises Product Vulnerabilities

2021-03-03 ⋅ CISA ⋅ CISA
Alert (AA21-062A): Mitigate Microsoft Exchange Server Vulnerabilities
HAFNIUM

2021-02-24 ⋅ US-CERT ⋅ CISA, US-CERT
Alert (AA21-055A): Exploitation of Accellion File Transfer Appliance

2021-02-24 ⋅ US-CERT ⋅ CISA, US-CERT
Malware Analysis Report (AR21-055A): Accellion FTA
DEWMODE

2021-02-18 ⋅ PTSecurity ⋅ PTSecurity
https://www.ptsecurity.com/ww-en/analytics/antisandbox-techniques/
Poet RAT Gravity RAT Ketrican Okrum OopsIE Remcos RogueRobinNET RokRAT SmokeLoader

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048E): AppleJeus: CoinGoTrade
AppleJeus POOLRAT AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048C): AppleJeus: Union Crypto
AppleJeus Unidentified macOS 001 (UnionCryptoTrader) AppleJeus

2021-02-17 ⋅ US-CERT ⋅ CISA
Malware Analysis Report (AR21-048F): AppleJeus: Dorusio
AppleJeus AppleJeus Unidentified 077 (Lazarus Downloader)