Malpedia Library

Click here to download all references as Bib-File.•

2026-04-05 ⋅ 0x3oBAD ⋅ Abdullah Islam
Deep Technical Analysis Of Payload Ransomware Targeting ESXi Environment
Payload

2026-03-02 ⋅ Zscaler ⋅ Sudeep Singh
Dust Specter APT Targets Government Officials in Iraq

2026-02-25 ⋅ FortiGuard Labs ⋅ Ariel Davidpur
Unmasking Agent Tesla: A Deep Dive into a Multi-Stage Campaign
Agent Tesla

2026-02-02 ⋅ Zscaler ⋅ Roy Tay, Sudeep Singh
APT28 Leverages CVE-2026-21509 in Operation Neusploit
PixyNetLoader

2026-02-02 ⋅ Rapid7 ⋅ Ivan Feigl
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit
Chrysalis

2026-01-27 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP | Part 2
MAILCREEP SHEETCREEP

2026-01-26 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL | Part 1
Cobalt Strike

2026-01-14 ⋅ Trellix ⋅ Mallikarjun Wali, Mohideen Abdul Khader
Hiding in Plain Sight: Deconstructing the Multi-Actor DLL Sideloading Campaign abusing ahost.exe
DCRat

2026-01-13 ⋅ ANY.RUN ⋅ ANY.RUN
CastleLoader Analysis: A Deep Dive into Stealthy Loader Targeting Government Sector
CASTLELOADER

2026-01-02 ⋅ Securite360.net ⋅ Muffin
The Intriguing Lotus: A Deep Dive into Sagerunex
Sagerunex

2025-12-25 ⋅ abuse.ch ⋅ abuse.ch
MalwareBazaar | DeerStealer
DeerStealer

2025-12-10 ⋅ Trend Micro ⋅ Ashish Verma, Deep Patel, Jack Walsh, Lucas Silva, Peter Girnus
CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation

2025-11-17 ⋅ KELA ⋅ KELA Cyber Intelligence Center
ByteToBreach: A Deep Dive into a Persistent Data Leak Operator
ByteToBreach

2025-09-24 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
NOROBOT

2025-09-18 ⋅ Recorded Future ⋅ Insikt Group
CopyCop Deepens Its Playbook with New Websites and Targets
Storm-1516

2025-09-14 ⋅ Genians ⋅ Genians
AI-Driven Deepfake Military ID Fraud Campaign by Kimsuky APT

2025-09-08 ⋅ Jamf Blog ⋅ Ferdous Saljooki, Maggie Zirnhelt
ChillyHell: A Deep Dive into a Modular macOS Backdoor
UNC4487

2025-08-05 ⋅ Defentive ⋅ Defentive Threat Research
Lost in Translation: Threat Actors Use SEO Poisoning and Fake DeepL Sites to Distribute Gh0st RAT
Ghost RAT

2025-07-28 ⋅ Wiz.io ⋅ Merav Bar
TraderTraitor: Deep Dive
GolangGhost Manuscrypt RN Stealer DRATzarus GolangGhost PostNapTea Volgmer wAgentTea

2025-07-24 ⋅ SYGNIA ⋅ Sygnia Team
Fire Ant: A Deep-Dive into Hypervisor-Level Espionage