Malpedia Library

Click here to download all references as Bib-File.•

2022-05-18 ⋅ ⋅ Weixin ⋅ 360 Threat Intelligence Center
filesyncshell.dll hijacked? APT-C-24 Sidewinder Briefing on the Latest Attack Activity

2022-05-18 ⋅ Cisco Talos ⋅ Holger Unterbrink
The BlackByte ransomware group is striking users all over the globe
BlackByte

2022-05-17 ⋅ Microsoft Security ⋅ Berman Enconado, Laurie Kirk
In hot pursuit of ‘cryware’: Defending hot wallets from attacks
Mars Stealer RedLine Stealer

2022-05-17 ⋅ Positive Technologies ⋅ Positive Technologies
Space Pirates: analyzing the tools and connections of a new hacker group
FormerFirstRAT PlugX Poison Ivy Rovnix ShadowPad Zupdax

2022-05-17 ⋅ Advanced Intelligence ⋅ Vitali Kremez, Yelisey Boguslavskiy
Hydra with Three Heads: BlackByte & The Future of Ransomware Subsidiary Groups
BlackByte Conti

2022-05-16 ⋅ Department of Justice
Hacker and Ransomware Designer Charged for Use and Sale of Ransomware, and Profit Sharing Arrangements with Cybercriminals (APPLICATION FOR AN ARREST WARRANT)
Hakbit

2022-05-16 ⋅ FBI ⋅ FBI
FBI Flash MC-000170-MW: Cyber Actors Scrape Credit Card Data from US Business’ Online Checkout Page and Maintain Persistence by Injecting Malicious PHP Code

2022-05-16 ⋅ Kaspersky ⋅ Roman Dedenok
HTML attachments in phishing e-mails

2022-05-16 ⋅ Trend Micro ⋅ Cifer Fang, Ford Qin, Zhengyu Dong
Fake Mobile Apps Steal Facebook Credentials, Cryptocurrency-Related Keys
FaceStealer

2022-05-12 ⋅ cyble ⋅ Cyble Research Labs
A Closer Look At Eternity Malware: Threat Actors Leveraging Telegram To Build Malware
DynamicStealer Eternity Clipper Eternity Ransomware Eternity Stealer Eternity Worm

2022-05-12 ⋅ ⋅ Cert-UA ⋅ Cert-UA
Uac-0010 (Armageddon) cyberattacks using GammaLoad.PS1_v2 malware (CERT-UA#4634,4648)
Gamaredon Group

2022-05-12 ⋅ Lacework Labs ⋅ Chris Hall, Jared Stroud
Malware targeting latest F5 vulnerability
Mirai

2022-05-12 ⋅ Medium s2wlab ⋅ Jiho Kim
The History of BlackGuard Stealer
BlackGuard

2022-05-12 ⋅ Blackberry ⋅ The BlackBerry Research & Intelligence Team
Threat Thursday: Malware Rebooted - How Industroyer2 Takes Aim at Ukraine Infrastructure
INDUSTROYER2

2022-05-12 ⋅ Intel 471 ⋅ Intel 471
What malware to look for if you want to prevent a ransomware attack
Conti BumbleBee Cobalt Strike IcedID Sliver

2022-05-12 ⋅ Red Canary ⋅ Lauren Podber, Tony Lambert
The Goot cause: Detecting Gootloader and its follow-on activity
GootLoader Cobalt Strike

2022-05-11 ⋅ The Hacker News ⋅ Ravie Lakshmaman
Bitter APT Hackers Add Bangladesh to Their List of Targets in South Asia

2022-05-11 ⋅ ExaTrack ⋅ Tristan Pourcelot
Tricephalic Hellkeeper: a tale of a passive backdoor
BPFDoor Bvp47 Uroburos

2022-05-11 ⋅ NTT Security Holdings ⋅ NTT Security Holdings
Analysis of an Iranian APTs “E400” PowGoop Variant Reveals Dozens of Control Servers Dating Back to 2020
PowGoop

2022-05-11 ⋅ SANS ISC ⋅ Brad Duncan
TA578 using thread-hijacked emails to push ISO files for Bumblebee malware
BumbleBee