Malpedia Library

Click here to download all references as Bib-File.•

2022-07-29 ⋅ RiskIQ ⋅ Jordan Herman
Falling Into a Nest of Vipers or: "Why'd it have to be snakes?" (Microsoft Threat Intelligence Brief)

2022-06-14 ⋅ RiskIQ ⋅ Jordan Herman
RiskIQ: Identifying BumbleBee Command and Control Servers
BumbleBee

2022-01-14 ⋅ RiskIQ ⋅ Jordan Herman
RiskIQ: Unique SSL Certificates and JARM Hash Connected to Emotet and Dridex C2 Servers
Dridex Emotet

2021-12-13 ⋅ RiskIQ ⋅ Jordan Herman
RiskIQ: Connections between Nanocore, Netwire, and AsyncRAT and Vjw0rm dynamic DNS C2 infrastructure
AsyncRAT Nanocore RAT NetWire RC Vjw0rm

2021-12-01 ⋅ RiskIQ ⋅ Jordan Herman
Bulletproof Hosting Services: Investigating Shinjiru Technology Sdn Bhd

2021-10-06 ⋅ zimperium ⋅ Jordan Herman
Malware Distribution with Mana Tools
Agent Tesla Azorult

2021-09-22 ⋅ RiskIQ ⋅ Jordan Herman, Kelsey Clapp
The Bom Skimmer and MageCart Group 7
magecart

2021-08-25 ⋅ RiskIQ ⋅ Jordan Herman
EITest: Linkages to the Ongoing Malware Delivery Campaign Referred to as "Gootloader"
GootLoader

2021-07-28 ⋅ RiskIQ ⋅ Jennifer Grob, Jordan Herman
Use of XAMPP Web Component to Identify Agent Tesla Infrastructure
Agent Tesla

2021-07-14 ⋅ RiskIQ ⋅ Jordan Herman
Bulletproof Hosting Services: Investigating Media Land LLC, Part 2

2021-06-30 ⋅ RiskIQ ⋅ Jennifer Grob, Jordan Herman
Bulletproof Hosting Services: Investigating Media Land LLC

2021-06-16 ⋅ RiskIQ ⋅ Jordan Herman
Bit2Check: Investigating Actors in the Carding Space

2021-05-26 ⋅ RiskIQ ⋅ Jordan Herman
The MobileInter Skimmer: Hosted by Google, Hiding in Images

2021-04-22 ⋅ RiskIQ ⋅ Adam Castleman, Jordan Herman
Stealing All Your Information For Years With Shadow Z118 PayPal Phish Kits

2021-04-07 ⋅ RiskIQ ⋅ Adam Castleman, Jordan Herman
Yanbian Gang Malware Continues with Wide-Scale Distribution and C2

2021-02-24 ⋅ RiskIQ ⋅ Jordan Herman
Turkey Dog: Cerberus and Anubis Banking Trojans Target Turkish Speakers
Anubis Cerberus

2021-01-14 ⋅ RiskIQ ⋅ Jordan Herman
MediaLand: Magecart and Bulletproof Hosting
magecart

2020-12-16 ⋅ RiskIQ ⋅ Cory Kennedy, Jordan Herman, Mia Ihm
Skimming a Little Off the Top: Meyhod’s Skimming Methods Hit Hairloss Specialists
magecart

2020-11-18 ⋅ RiskIQ ⋅ Jordan Herman
The Grelos Skimmer: A New Variant
grelos

2020-11-11 ⋅ RiskIQ ⋅ Jordan Herman
Magecart Group 12: End of Life Magento Sites Infested with Ants and Cockroaches
magecart

2020-09-02 ⋅ RiskIQ ⋅ Jordan Herman
The Inter Skimmer Kit
magecart DreamBot TeslaCrypt

2020-06-09 ⋅ RiskIQ ⋅ Jordan Herman
Misconfigured Amazon S3 Buckets Continue to be a Launchpad for Malicious Code
magecart

2020-02-07 ⋅ RiskIQ ⋅ Jordan Herman
Magecart Group 12’s Latest: Actors Behind Attacks on Olympics Ticket Re-sellers Deftly Swapped Domains to Continue Campaign
magecart

2018-07-09 ⋅ RiskIQ ⋅ Jordan Herman, Yonathan Klijnsma
Inside and Beyond Ticketmaster: The Many Breaches of Magecart
magecart