Malpedia Library

Click here to download all references as Bib-File.•

2023-07-12 ⋅ Sekoia ⋅ Pierre Le Bourhis, Quentin Bourgue, Threat & Detection Research Team
CustomerLoader: a new malware distributing a wide variety of payloads
CustomerLoader

2023-07-12 ⋅ Lumen ⋅ Black Lotus Labs
Routers From The Underground: Exposing AVrecon
AVrecon

2023-07-12 ⋅ Fortinet ⋅ Cara Lin
LokiBot Campaign Targets Microsoft Office Document Using Vulnerabilities and Macros
Loki Password Stealer (PWS)

2023-07-12 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Diplomats Beware: Cloaked Ursa Phishing With a Twist
GraphDrop

2023-07-12 ⋅ ⋅ JPCERT/CC ⋅ Yuma Masubuchi
DangerousPassword attacks targeting developers' Windows, macOS, and Linux environments

2023-07-12 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Diplomats Beware: Cloaked Ursa Phishing With a Twist

2023-07-12 ⋅ Mandiant ⋅ Dan Black, Gabby Roncone
The GRU's Disruptive Playbook
CaddyWiper INDUSTROYER2 XakNet

2023-07-12 ⋅ Dragos ⋅ Dragos
Mitigating CVE-2023-3595 and CVE-2023-3596 Impacting Rockwell Automation ControlLogix Firmware

2023-07-11 ⋅ Google ⋅ Ng Choon Kiat, Rommel Joven
The Spies Who Loved You: Infected USB Drives to Steal Secrets
FROZENHILL

2023-07-11 ⋅ sysdig ⋅ Alessandro Brucato
SCARLETEEL 2.0: Fargate, Kubernetes, and Crypto
SCARLETEEL

2023-07-11 ⋅ AhnLab ⋅ ASEC
Analysis of the Rekoobe Backdoor Being Used In Attacks Against Linux Systems in Korea
Rekoobe

2023-07-11 ⋅ Cloudsek ⋅ Bablu Kumar
Breaking into the Bandit Stealer Malware Infrastructure
Bandit Stealer

2023-07-11 ⋅ Mandiant ⋅ Ng Choon Kiat, Rommel Joven
The Spies Who Loved You: Infected USB Drives to Steal Secrets
PlugX

2023-07-11 ⋅ Microsoft ⋅ Microsoft
Storm-0978 attacks reveal financial and espionage motives
ROMCOM RAT

2023-07-08 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
RomCom Threat Actor Suspected of Targeting Ukraine's NATO Membership Talks at the NATO Summit
ROMCOM RAT

2023-07-08 ⋅ Gi7w0rm
CloudEyE — From .lnk to Shellcode
CloudEyE Remcos

2023-07-07 ⋅ Cert-UA ⋅ Cert-UA
UAC-0057 Targeted Cyber Attack Against Government Agencies Using PicassoLoader/njRAT (CERT-UA#6948)
PicassoLoader Ghostwriter

2023-07-07 ⋅ Zscaler ⋅ Niraj Shivtarkar, Preet Kamal
The TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM Region

2023-07-07 ⋅ Lab52 ⋅ Lab52
Beyond appearances: unknown actor using APT29’s TTP against Chinese users
Cobalt Strike

2023-07-07 ⋅ Github (cocomelonc) ⋅ cocomelonc
Malware development trick - part 34: Find PID via WTSEnumerateProcesses. Simple C++ example.