Malpedia Library

Click here to download all references as Bib-File.•

2025-09-18 ⋅ Silent Push ⋅ Silent Push
CountLoader: Silent Push Discovers New Malware Loader Being Served in 3 Different Versions
CountLoader

2025-09-08 ⋅ Silent Push ⋅ Silent Push
Salt Typhoon and UNC4841: Silent Push Discovers New Domains; Urges Defenders to Check Telemetry and Log Data

2025-08-06 ⋅ Silent Push ⋅ Silent Push
Unmasking SocGholish: Silent Push Untangles the Malware Web Behind the “Pioneer of Fake Updates” and Its Operator, TA569
FAKEUPDATES MintsLoader Parrot TDS Parrot TDS WebShell Raspberry Robin

2025-04-24 ⋅ Silent Push ⋅ Silent Push
Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware: BeaverTail, InvisibleFerret, and OtterCookie
BeaverTail OtterCookie FrostyFerret GolangGhost InvisibleFerret GolangGhost

2025-02-20 ⋅ Silent Push ⋅ Silent Push
Tweet on Tracking ValleyRAT Domains with ICP Licenses
ValleyRAT

2024-12-11 ⋅ Silent Push ⋅ Silent Push
Silent Push Unwraps the AIZ—Aggressive Inventory Zombies—Retail & Crypto Phishing Network Campaign
Aggressive Inventory Zombies

2024-10-22 ⋅ Silent Push ⋅ Silent Push
Triad Nexus: Silent Push exposes FUNNULL CDN hosting DGA domains for suspect Chinese gambling sites, investment scams, a retail phishing campaign, and a polyfill.io supply chain attack impacting 110,000+ sites

2023-09-07 ⋅ Silent Push ⋅ Silent Push
'From Russia with a 71': Uncovering Gamaredon's fast flux infrastructure. New apex domains and ASN/IP diversity patterns discovered

2022-08-13 ⋅ Silentpush ⋅ Silent Push
Early Analysis of the Twilio phishing attack-it is the tip of the iceberg

2022-07-21 ⋅ Silentpush ⋅ Silent Push
It’s time to close the door on open directories

2022-06-24 ⋅ Silent Push ⋅ Silent Push
“We need to talk about subdomain takeovers…”

2022-05-03 ⋅ Silent Push ⋅ Silent Push
Subdomain Takeovers and 1.1 million “dangling” risks

2022-04-09 ⋅ Silent Push ⋅ Inês Véstia, Ken
Two men arrested for impersonating DHS employees. Lets unravel some infrastructure.

2022-01-01 ⋅ Silent Push ⋅ Silent Push
Privacy tools (not) for you
SmokeLoader

2022-01-01 ⋅ Silent Push ⋅ Afonso Knudsen, Inês Véstia
Lapsus$ Group (DEV-0537/UNC3661) - an emerging dark net threat actor leveraging insider threats-or was it?

2022-01-01 ⋅ Silent Push ⋅ Silent Push
Consequences- The Conti Leaks and future problems
Cobalt Strike Conti

2022-01-01 ⋅ Silent Push ⋅ Silent Push
Phishing sites on bulletproof hosting infrastructure

2022-01-01 ⋅ Silent Push ⋅ Silent Push
Phishing infrastructure used to target US government contractors

2022-01-01 ⋅ Silent Push ⋅ Silent Push
Credit card phishing using NHS Covid Pass as a lure

2022-01-01 ⋅ Silent Push ⋅ Silent Push
USPS phishing on a bulletproof hosting network