Malpedia Library

2021-07-23 ⋅ Github (Lastline-Inc) ⋅ Pavankumar Chaudhari, Quentin Fois
YARA rules, IOCs and Scripts for extracting IcedID C2s
IcedID

2020-06-02 ⋅ Lastline Labs ⋅ James Haughom, Stefano Ortolani
Evolution of Excel 4.0 Macro Weaponization
Agent Tesla DanaBot ISFB TrickBot Zloader

2020-03-10 ⋅ Lastline ⋅ James Haughom
IQY files and Paradise Ransomware
Paradise

2020-02-18 ⋅ Lastline ⋅ Jason Zhang, Stefano Ortolani
Nemty Ransomware Scaling UP: APAC Mailboxes Swarmed by Dual Downloaders
Nemty Phorpiex

2019-09-30 ⋅ Lastline ⋅ Jason Zhang, Stefano Ortolani
HELO Winnti: Attack or Scan?
Winnti

2019-01-11 ⋅ Lastline ⋅ Quentin Fois
Threat Actor “Cold River”: Network Traffic Analysis and a Deep Dive on Agent Drable
Cold River

2018-05-31 ⋅ Lastline ⋅ Andy Norton, David Wells, Luukas Larinkoski, Stefano Ortolani
APT28 Rollercoaster: The Lowdown on Hijacked Lo

2018-03-09 ⋅ Lastline ⋅ lastline Labs Team
From Russia(?) with Code
Olympic Destroyer

2018-02-21 ⋅ Lastline ⋅ Alexander Sevtsov, Stefano Ortolani
Olympic Destroyer: A new Candidate in South Korea
Olympic Destroyer

2017-12-19 ⋅ Lastline ⋅ Andy Norton
Novel Excel Spreadsheet Attack Launches Password Stealing Malware Loki Bot
Loki Password Stealer (PWS)

2017-12-13 ⋅ Lastline ⋅ Alexander Sevtsov
Tyupkin ATM Malware: Take The Money Now Or Never!
Tyupkin

2016-10-24 ⋅ Lastline ⋅ lastline Labs Team
Evasive Malware Detects and Defeats Virtual Machine Analysis