Malpedia Library

Click here to download all references as Bib-File.•

2025-02-21 ⋅ SonicWall ⋅ SonicWall
Remcos RAT Targets Europe: New AMSI and ETW Evasion Tactics Uncovered
Remcos

2024-10-24 ⋅ Arctic Wolf ⋅ Akshay Suthar, Stefan Hostetler, Steven Campbell
Arctic Wolf Labs Observes Increased Fog and Akira Ransomware Activity Linked to SonicWall SSL VPN
Akira Akira

2024-08-27 ⋅ SonicWall ⋅ Security News
AutoIT Bot Targets Gmail Accounts First

2024-06-24 ⋅ SonicWall ⋅ SonicWall
StrelaStealer Resurgence: Tracking a JavaScript-Driven Credential Stealer Targeting Europe
StrelaStealer

2024-04-02 ⋅ SonicWall ⋅ SonicWall
Updated StrelaStealer Targeting European Countries
StrelaStealer

2024-01-29 ⋅ SonicWall ⋅ Security News
Blackwood APT Group Has a New DLL Loader
NSPX30 Blackwood

2023-03-08 ⋅ Mandiant ⋅ Ben Read, DANIEL LEE, Stephen Eckels
Suspected Chinese Campaign to Persist on SonicWall Devices, Highlights Importance of Monitoring Edge Devices
UNC4540

2023-02-23 ⋅ SonicWall ⋅ SonicWall
Berbew Backdoor Spotted In The Wild
Berbew

2022-06-21 ⋅ SonicWall ⋅ SonicWall
HTML Application Files are being used to distribute Smoke Loader Malware
SmokeLoader

2021-08-06 ⋅ SonicWall ⋅ SonicWall
Redosdru.v Malware that hides in encrypted DLL Files to avoid Detection by Firewalls
Redosdru

2021-07-17 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
HelloKitty ransomware is targeting vulnerable SonicWall devices
HelloKitty

2021-06-08 ⋅ CrowdStrike ⋅ Hanno Heinrichs, Heather Smith
Another Brick in the Wall: eCrime Groups Leverage SonicWall VPN Vulnerability

2021-04-20 ⋅ FireEye ⋅ Alex Pennino, Chris DiGiamo, Josh Fleischer
Zero-Day Exploits in SonicWall Email Security Lead to Enterprise Compromise

2021-03-26 ⋅ SonicWall ⋅ SonicWall CaptureLabs Threats Research Team
China’s “Winnti” Spyder Module
Spyder

2021-02-01 ⋅ SonicWall ⋅ SonicWall
Urgent Security Notice: SonicWall Confirms SMA 100 Series 10. X Zero-Day Vulnerability

2021-01-31 ⋅ Twitter (@NCCGroupInfosec) ⋅ NCCGroup
Tweet on ITW exploitation of 0-day in SonicWall SMA 100 series

2021-01-24 ⋅ Darren’s Website ⋅ Darren Martyn
VisualDoor: SonicWall SSL-VPN Exploit

2020-03-05 ⋅ SonicWall ⋅ SonicWall CaptureLabs Threats Research Team
MARRACRYPT RANSOMWARE ACTIVELY SPREADING IN THE WILD
MarraCrypt

2020-01-09 ⋅ SonicWall ⋅ SonicWall
ServHelper 2.0: Enriched with bot capabilities and allow remote desktop access
ServHelper

2019-12-13 ⋅ SonicWall ⋅ SonicWall
LALALA InfoStealer which comes with Batch and PowerShell scripting combo
LALALA Stealer

2019-11-12 ⋅ SonicWall ⋅ SonicWall
Meeting a Russian Ransomware Cell
HILDACRYPT

2019-09-04 ⋅ SonicWall ⋅ SonicWall CaptureLabs Threats Research Team
HILDACRYPT ransomware actively spreading in the wild
HILDACRYPT

2019-08-24 ⋅ SonicWall ⋅ SonicWall CaptureLabs Threats Research Team
Simda Process Injection into Winlogon DGA Found
Simda

2018-09-21 ⋅ SonicWall ⋅ SonicWall CaptureLabs Threats Research Team
VIGILANTE MALWARE REMOVES CRYPTOMINERS FROM THE INFECTED DEVICE
FBot

2018-09-09 ⋅ Palo Alto Networks Unit 42 ⋅ Ruchna Nigam
Multi-exploit IoT/Linux Botnets Mirai and Gafgyt Target Apache Struts, SonicWall
Bashlite Mirai

2015-01-01 ⋅ SonicWall ⋅ SonicWall
Laziok Malware Targets Energy Companies
Laziok

2014-02-21 ⋅ SonicWall ⋅ Ed Miles
CVE 2014-0322 Malware - Sakurel (Feb 21, 2014)
Sakula RAT

2012-10-02 ⋅ SonicWall ⋅ Thoufique Haq
Blackhole Exploit Kit – Rise and Evolution