Malpedia Library

2022-01-25 ⋅ ESET Research ⋅ Anton Cherepanov, Marc-Etienne M.Léveillé
Watering hole deploys new macOS malware, DazzleSpy, in Asia

2021-10-05 ⋅ ESET Research ⋅ Anton Cherepanov, Martin Smolár
UEFI threats moving to the ESP: Introducing ESPecter bootkit
ESPecter

2021-08-06 ⋅ ESET Research ⋅ Anton Cherepanov, Zuzana Hromcová
Anatomy of native IIS malware
IISniff RGDoor

2020-11-16 ⋅ ESET Research ⋅ Anton Cherepanov, Peter Kálnai
Lazarus supply‑chain attack in South Korea
BookCodes RAT Lazarus Group

2020-09-10 ⋅ ESET Research ⋅ Anton Cherepanov
Who is calling? CDRThief targets Linux VoIP softswitches
CDRThief

2020-06-18 ⋅ ESET Research ⋅ Anton Cherepanov, Zuzana Hromcová
Digging up InvisiMole’s hidden arsenal
RC2FM Gamaredon Group

2020-06-18 ⋅ ESET Research ⋅ Anton Cherepanov, Zuzana Hromcová
Digging up InvisiMole’s hidden arsenal
InvisiMole Gamaredon Group InvisiMole

2020-06-08 ⋅ ESET Research ⋅ Anton Cherepanov, Zuzana Hromcová
InvisiMole: The Hidden Part of the Story - Unearthing InvisiMole's Espionage Toolset and Strategic Cooperations
InvisiMole RC2FM

2019-05-14 ⋅ ESET Research ⋅ Anton Cherepanov
Plead malware distributed via MitM attacks at router level, misusing ASUS WebStorage
PLEAD BlackTech

2018-10-18 ⋅ ESET Research ⋅ Anton Cherepanov
GREYENERGY: A successor to BlackEnergy
Felixroot GreyEnergy

2018-10-17 ⋅ ESET Research ⋅ Anton Cherepanov, Robert Lipovsky
ESET unmasks ‘GREYENERGY’ cyber-espionage group
GreyEnergy GreyEnergy

2018-10-17 ⋅ ESET Research ⋅ Anton Cherepanov, Robert Lipovsky
GreyEnergy: Updated arsenal of one of the most dangerous threat actors
GreyEnergy

2018-10-11 ⋅ ESET Research ⋅ Anton Cherepanov, Robert Lipovsky
New TeleBots backdoor: First evidence linking Industroyer to NotPetya
Exaramel EternalPetya Exaramel Industroyer

2018-10-04 ⋅ Virus Bulletin ⋅ Anton Cherepanov
Nomadic Octopus: cyber espionage in Central Asia
DustSquad

2018-07-09 ⋅ ESET Research ⋅ Anton Cherepanov
Certificates stolen from Taiwanese tech‑companies misused in Plead malware campaign
PLEAD BlackTech

2018-04-03 ⋅ ESET Research ⋅ Anton Cherepanov, Peter Kálnai
Lazarus KillDisks Central American casino
KillDisk (Lazarus) Lazarus Group

2017-10-05 ⋅ Virus Bulletin ⋅ Anton Cherepanov, Robert Lipovsky
Industroyer: Biggest threat to industrial control systems since Stuxnet
Industroyer

2017-07-04 ⋅ ESET Research ⋅ Anton Cherepanov
Analysis of TeleBots’ cunning backdoor
TeleDoor

2017-07-03 ⋅ ESET Research ⋅ Anton Cherepanov, Robert Lipovsky
BlackEnergy – what we really know about the notorious cyber attacks
BlackEnergy

2017-06-30 ⋅ ESET Research ⋅ Anton Cherepanov
TeleBots are back: Supply‑chain attacks against Ukraine
TeleBot Sandworm