Malpedia Library

Click here to download all references as Bib-File.•

2024-07-09 ⋅ TG Soft ⋅ Gianfranco Tonello, Michele Zuin
Italian government agencies and companies in the target of a Chinese APT
9002 RAT

2024-06-05 ⋅ QuoIntelligence ⋅ Alixia Clarisse Rutayisire
European Election Security At Risk: A Detailed Analysis of State-Sponsored, eCrime, and Hacktivist Threats
Dragonbridge

2024-06-05 ⋅ ⋅ Sekoia ⋅ Charles Meslay
The reverse engineering of malicious code in the ITC - Analysis of the evolution of a chain of infection (Slides)
FlowCloud

2024-05-04 ⋅ Medium MITRE-Engenuity ⋅ Lex Crumpton
Technical Deep Dive: Understanding the Anatomy of a Cyber Intrusion
WIREFIRE

2024-05-03 ⋅ Aqua Nautilus ⋅ Aqua Nautilus
Kinsing Demystified: A Comprehensive Technical Guide
Kinsing

2024-05-01 ⋅ Microsoft ⋅ Dimitrios Valsamaras
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps

2024-04-19 ⋅ dissect.ing ⋅ Scottish Fold
Exploiting a cryptographic vulnerability inside the Donex Ransomware
Donex

2024-04-15 ⋅ UC Santa Cruz ⋅ Alonso Rojas, Alvaro A. Cardenas, Bing Huang, Emmanuele Zambon, Juan Lozano, Keerthi Koneru, Luis Salazar, Marina Krotofil, Ross Baldick, Sebastian R. Castro
A Tale of Two Industroyers: It was the Season of Darkness
Industroyer INDUSTROYER2

2024-03-29 ⋅ CISA ⋅ CISA
Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
xzbot

2024-03-05 ⋅ Team Cymru ⋅ S2 Research Team
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs?
Coper

2024-03-01 ⋅ HarfangLab ⋅ HarfangLab CTI
A Comprehensive Analysis of i-SOON’s Commercial Offering
ShadowPad Winnti

2024-02-20 ⋅ Trendmicro ⋅ Pierre Lee, Sunny Lu
Earth Preta Campaign Uses DOPLUGS to Target Asia
DOPLUGS

2024-02-12 ⋅ Estrellas's Blog ⋅ Otávio M.
Unveiling custom packers: A comprehensive guide
Dridex Simda

2024-02-09 ⋅ Department of Justice ⋅ Office of Public Affairs
International Cybercrime Malware Service Dismantled by Federal Authorities: Key Malware Sales and Support Actors in Malta and Nigeria Charged in Federal Indictments
Ave Maria

2024-02-07 ⋅ Lumen ⋅ Black Lotus Labs
KV-Botnet: Don’t call it a Comeback
KV

2024-01-11 ⋅ Forescout ⋅ Jos Wetzels
Clearing the Fog of War – A critical analysis of recent energy sector cyberattacks in Denmark and Ukraine

2024-01-09 ⋅ Trend Micro ⋅ Arianne Dela Cruz, Charles Steven Derion, Francisrey Joshua Castillo, Henry Salcedo, Ian Kenefick, John Carlo Marquez, John Rainier Navato, Joshua Aquino, Juhn Emmanuel Atanque, Raymart Yambot, Shinji Robert Arasawa
Black Basta-Affiliated Water Curupira’s Pikabot Spam Campaign
Pikabot Water Curupira

2023-12-14 ⋅ Mandiant ⋅ Adrian McCabe, Geoff Ackerman, Rufus Brown, Ryan Tomcik
Opening a Can of Whoop Ads: Detecting and Disrupting a Malvertising Campaign Distributing Backdoors
DanaBot DarkGate

2023-12-07 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Fighting Ursa Aka APT28: Illuminating a Covert Campaign

2023-12-06 ⋅ Carmelo Ragusa, Luigi Martire
Unveiling “Vetta Loader”: A custom loader hitting Italy and spread through infected USB Drives
Vetta Loader