Malpedia Library

Click here to download all references as Bib-File.•

2025-09-05 ⋅ Arctic Wolf ⋅ Dmitry Kupin, Dmitry Melikov, Jacob Faires, Jon Grimm, Pavel Usatenko
GPUGate Malware: Malicious GitHub Desktop Implants Use Hardware-Specific Decryption, Abuse Google Ads to Target Western Europe

2025-07-17 ⋅ National Police Agency (Japan) ⋅ National Police Agency (Japan)
Phobos/8Base Decryption Tool
8Base Phobos

2025-07-16 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 43 - encrypt/decrypt payload via Mars cipher. Simple C example.

2025-05-29 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 42 - encrypt/decrypt payload via Speck cipher. Simple C example.

2025-04-17 ⋅ Porthas ⋅ Hassan Faraz, Mohamed Talaat
Breaking the B0 ransomware: Investigation & Decryption
B0

2025-04-10 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 41 - encrypt/decrypt payload via TEA. Simple Nim example.

2025-04-02 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 40 - encrypt/decrypt payload via RC5. Simple Nim example.

2025-03-13 ⋅ Tinyhack.com ⋅ tinyhack
Decrypting Encrypted files from Akira Ransomware (Linux/ESXI variant 2024) using a bunch of GPUs
Akira

2025-01-16 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 39 - encrypt/decrypt payload via DES-like cipher. Simple C example.

2024-12-29 ⋅ cocomelonc ⋅ cocomelonc
Malware and cryptography 38 - Encrypt/decrypt payload via Camellia cipher. S-box analyses examples. Simple C example.

2024-11-13 ⋅ Bitdefender ⋅ Martin Zugec
ShrinkLocker (+Decryptor): From Friend to Foe, and Back Again
ShrinkLocker

2024-06-17 ⋅ medium Andrew Petus ⋅ Andrew Petus
Reverse Engineering Redosdru String Decryption
Redosdru

2024-06-13 ⋅ Github (LambdaMamba) ⋅ Lena Yu
Implementation of C2 decryption
PrivateLoader

2024-06-13 ⋅ Github (LambdaMamba) ⋅ Lena Yu
Implementation of a Config Decryptor for Amadey
Amadey

2024-05-23 ⋅ Github (x-junior) ⋅ Mohamed Ashraf
String Decryptor for WarmCookie
WarmCookie

2024-05-09 ⋅ 0x0d4y ⋅ 0x0d4y
[Case Study: Latrodectus] Analyzing and Implementing String Decryption Algorithms
Latrodectus

2024-04-24 ⋅ kienmanowar Blog ⋅ m4n0w4r, Tran Trung Kien
[QuickNote] Qakbot 5.0 – Decrypt strings and configuration
QakBot

2024-03-18 ⋅ PCrisk ⋅ Tomas Meskauskas
FORCE (.FORCE) ransomware virus – removal and decryption options
Phobos

2024-02-12 ⋅ HelpNetSecurity ⋅ Zeljka Zorz
Decryptor for Rhysida ransomware is available!
Rhysida

2024-02-02 ⋅ Github (VenzoV) ⋅ VenzoV
WikiLoader "notepad" part 1 - Decrypting Shellcode
WikiLoader