Malpedia Library

Click here to download all references as Bib-File.•

2025-04-25 ⋅ Twitter (@teamcymru_S2) ⋅ TEAM CYMRU S2 THREAT RESEARCH
Tweet on North Korean Cyber Ops Leveraging Russian Infrastructure

2025-04-21 ⋅ Twitter (@browsercookies) ⋅ Cookie Connoisseur
Tweet on public Google Drive potentially connected to DPRK activity.

2025-03-26 ⋅ Twitter (@MalGamy12) ⋅ Gameel Ali
Tweet about RALord ransomware
RALord

2025-03-14 ⋅ Twitter (@CERTCyberdef) ⋅ Alexandre Matousek, Marine PICHON
Tweet on Emmenhtal v3
Emmenhtal Lumma Stealer Rhadamanthys

2025-03-11 ⋅ Twitter (@ESETresearch) ⋅ ESET Research
Twitter Thread about PipeMagic
PipeMagic

2025-03-06 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Tweet about Moonstone Sleet dropping Qilin ransomware
Qilin

2025-02-21 ⋅ Twitter (@salmanvsf) ⋅ Salman Shaikh
Tweet about VXPCrypter

2025-02-14 ⋅ Twitter (@DTCERT) ⋅ Deutsche Telekom CERT
Twitter Thread on a password-protected loader observed in a vishing campaign
Unidentified 120

2025-02-11 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Twitter Thread on a new Kimsuky tactic inciting admins to paste powershell

2025-01-28 ⋅ Twitter (@anyrun_app) ⋅ ANY.RUN
Tweet on Linux version of SystemBC
SystemBC

2025-01-21 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft Threat Intelligence
Twitter Thread describing spotting of ReedBed in a Storm-1811 campaign
ReedBed UNC4393

2025-01-17 ⋅ Twitter (@Unit42_Intel) ⋅ Unit 42
Tweet about affiliates of DarkScorpius using Social Engineering via MS Teams
UNC4393

2024-12-20 ⋅ Twitter (@CERTCyberdef) ⋅ Alexandre Matousek, Marine PICHON
Tweet on Emmenhtal v2
Emmenhtal

2024-10-31 ⋅ Twitter (@MonThreat) ⋅ ThreatMon
Tweet about EvilByte claiming to have hacked MyFatoorah
Evilbyte

2024-10-31 ⋅ Twitter (@nextronresearch) ⋅ Nextron Systems
Tweet about discovery of HellDown ransomware
HellDown

2024-10-24 ⋅ Orange Cyberdefense ⋅ Alexis Bonnefoi, Marine PICHON, Vincent HINDERER
Twitter Thread about MintsLoader
MintsLoader

2024-10-22 ⋅ Twitter (@threatinsight) ⋅ Threat Insight
Twitter Thread attributing Voldemort to TA415 (APT41, BrassTyphoon)
Voldemort

2024-09-18 ⋅ Twitter (@MsftSecIntel) ⋅ Microsoft
Tweet about threat actor Vanilla Tempest
INC GootLoader Storm-0494

2024-09-03 ⋅ Twitter (@embee_research) ⋅ Embee_research
Advanced Cyberchef Techniques - Defeating Nanocore Obfuscation With Math and Flow Control
Nanocore RAT

2024-08-14 ⋅ Twitter (@salmanvsf) ⋅ Salman Shaikh
Tweet on a new malware family - Dust RAT