Malpedia Library

Click here to download all references as Bib-File.

2022-12-02 ⋅ Palo Alto Networks Unit 42 ⋅ Dominik Reichel, Esmid Idrizovic, Bob Jung
Blowing Cobalt Strike Out of the Water With Memory Analysis
Cobalt Strike

2022-11-21 ⋅ Palo Alto Networks Unit 42 ⋅ Kristopher Russo
Threat Assessment: Luna Moth Callback Phishing Campaign
BazarBackdoor Conti

2022-11-18 ⋅ Palo Alto Networks Unit 42 ⋅ Akshata Rao, Zong-Yu Wu, Wenjun Hu
An AI Based Solution to Detecting the DoubleZero .NET Wiper
DoubleZero

2022-09-27 ⋅ Palo Alto Networks Unit 42 ⋅ Mark Lim
More Than Meets the Eye: Exposing a Polyglot File That Delivers IcedID
PhotoLoader

2022-09-26 ⋅ Palo Alto Networks Unit 42 ⋅ Daniela Shalev, Itay Gamliel
Hunting for Unsigned DLLs to Find APTs
PlugX Raspberry Robin Roshtyak

2022-09-16 ⋅ Palo Alto Networks Unit 42 ⋅ Jin Chen, Lei Xu, Andrew Guan, Zhibin Zhang, Yu Fu
Zero-Day Exploit Detection Using Machine Learning

2022-09-13 ⋅ Palo Alto Networks Unit 42 ⋅ Jeff White
OriginLogger: A Look at Agent Tesla’s Successor
Agent Tesla OriginLogger

2022-09-06 ⋅ Palo Alto Networks Unit 42 ⋅ Chao Lei, Zhibin Zhang, Cecilia Hu, Aveek Das
Mirai Variant MooBot Targeting D-Link Devices
MooBot Mirai

2022-08-29 ⋅ Palo Alto Networks Unit 42 ⋅ Janos Szurdi
Tor 101: How Tor Works and its Risks to the Enterprise

2022-08-25 ⋅ Palo Alto Networks Unit 42 ⋅ Amer Elsad
Threat Assessment: Black Basta Ransomware
Black Basta

2022-08-25 ⋅ Palo Alto Networks Unit 42 ⋅ Amer Elsad
Threat Assessment: Black Basta Ransomware
Black Basta QakBot

2022-08-23 ⋅ Palo Alto Networks Unit 42 ⋅ Lucas Hu
Legitimate SaaS Platforms Being Used to Host Phishing Attacks

2022-08-10 ⋅ Palo Alto Networks Unit 42 ⋅ Muhammad Umer Khan, Lee Wei, Yang Ji, Wenjun Hu
BlueSky Ransomware: Fast Encryption via Multithreading
BlueSky RedLine Stealer

2022-08-10 ⋅ Palo Alto Networks Unit 42 ⋅ Anthony Galiette, Daniel Bunce, Doel Santos, Shawn Westfall
Novel News on Cuba Ransomware: Greetings From Tropical Scorpius
Cuba ROMCOM RAT

2022-08-03 ⋅ Palo Alto Networks Unit 42 ⋅ Brad Duncan
Flight of the Bumblebee: Email Lures and File Sharing Services Lead to Malware
BazarBackdoor BumbleBee Cobalt Strike Conti

2022-07-19 ⋅ Palo Alto Networks Unit 42 ⋅ Mike Harbison, Peter Renals
Russian APT29 Hackers Use Online Storage Services, DropBox and Google Drive
Cobalt Strike EnvyScout Gdrive

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Iron Taurus
CHINACHOPPER Ghost RAT Wonknu ZXShell APT27

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Granite Taurus
APT10

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit42
Clean Ursa
PowerShower Inception Framework

2022-07-18 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Trident Ursa
Gamaredon Group