Malpedia Library

Click here to download all references as Bib-File.•

2020-04-13 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Jen Miller-Osborn, Robert Falcone
APT41 Using New Speculoos Backdoor to Target Organizations Globally
Speculoos APT41

2020-03-03 ⋅ Palo Alto Networks Unit 42 ⋅ Alex Hinchliffe, Bryan Lee, Robert Falcone
Molerats Delivers Spark Backdoor to Government and Telecommunications Organizations
Downeks JhoneRAT Molerat Loader Spark

2019-12-09 ⋅ Palo Alto Networks Unit 42 ⋅ Brittany Ash, Bryan Lee, Mike Harbison
TrickBot Campaign Uses Fake Payroll Emails to Conduct Phishing Attacks
TrickBot

2019-04-30 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Behind the Scenes with OilRig
BONDUPDATER

2019-01-08 ⋅ paloalto Netoworks: Unit42 ⋅ Bryan Lee, Robert Falcone
DarkHydrus delivers new Trojan that can use Google Drive for C2 communications
RogueRobinNET DarkHydrus

2018-12-12 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Dear Joohn: The Sofacy Group’s Global Campaign
APT28

2018-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan
APT28

2018-11-20 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan
Cannon

2018-09-27 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Josh Grunzweig
New KONNI Malware attacking Eurasia and Southeast Asia
Nokki

2018-07-27 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone, Tom Lancaster
New Threat Actor Group DarkHydrus Targets Middle East Government
RogueRobin DarkHydrus

2018-07-25 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
OilRig Targets Technology Service Provider and Government Agency with QUADAGENT
OilRig

2018-06-06 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Sofacy Group’s Parallel Attacks
Koadic Zebrocy

2018-02-28 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Mike Harbison, Robert Falcone
Sofacy Attacks Multiple Government Entities
APT28

2018-02-23 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan
OilRig

2018-02-23 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
OopsIE! OilRig Uses ThreeDollars to Deliver New Trojan
OopsIE

2017-10-09 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
OilRig Group Steps Up Attacks with New Delivery Documents and New Injector Trojan
OilRig

2017-09-26 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Striking Oil: A Closer Look at Adversary Infrastructure
OilRig

2017-09-26 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
Striking Oil: A Closer Look at Adversary Infrastructure
RGDoor

2017-07-31 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
TwoFace Webshell: Persistent Access Point for Lateral Movement
TwoFace OilRig

2017-07-27 ⋅ Palo Alto Networks Unit 42 ⋅ Bryan Lee, Robert Falcone
OilRig Uses ISMDoor Variant; Possibly Linked to Greenbug Threat Group
Greenbug