Malpedia Library

Click here to download all references as Bib-File.•

2024-05-31 ⋅ Cybersecurity Insiders ⋅ Bogdan Glushko
Proven Data Restores PowerHost’s VMware Backups After SEXi Ransomware Attack
SEXi SEXi

2024-04-05 ⋅ DARKReading ⋅ Tara Seals
Ransomware Desires VMware Hypervisors in Ongoing Campaign
SEXi SEXi

2023-12-03 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Linux version of Qilin ransomware focuses on VMware ESXi
Qilin

2023-11-20 ⋅ vmware ⋅ Abe Schneider, Alan Ngo, Alex Murillo, Fae Carlisle, Nikki Benoit
NetSupport RAT: The RAT King Returns
NetSupportManager RAT

2023-11-06 ⋅ VMWare Carbon Black ⋅ Abe Schneider, Alan Ngo, Bria Beathley, Swee Lai Lee
Jupyter Rising: An Update on Jupyter Infostealer
solarmarker

2023-07-29 ⋅ BleepingComputer ⋅ Lawrence Abrams
Linux version of Abyss Locker ransomware targets VMware ESXi servers
Abyss Locker

2023-06-28 ⋅ vmware ⋅ Bria Beathley, Dana Behling, Deborah Snyder, Fae Carlisle
8Base Ransomware: A Heavy Hitting Player
8Base Phobos SmokeLoader SystemBC

2023-06-28 ⋅ Mandiant ⋅ Alexander Marvi, Greg Blaum, Ron Craft
Detection, Containment, and Hardening Opportunities for Privileged Guest Operations, Anomalous Behavior, and VMCI Backdoors on Compromised VMware Hosts
UNC3886

2023-06-13 ⋅ Mandiant ⋅ Mandiant
VMware ESXi Zero-Day Used by Chinese Espionage Actor to Perform Privileged Guest Operations on Compromised Hypervisors

2023-06-13 ⋅ Mandiant ⋅ Alexander Marvi, BRAD SLAYBAUGH, Ron Craft, Rufus Brown
VMware ESXi Zero-Day Used by Chinese Espionage Actor to Perform Privileged Guest Operations on Compromised Hypervisors (UNC3886)
UNC3886

2023-06-01 ⋅ vmware ⋅ Fae Carlisle
Carbon Black’s TrueBot Detection
Silence

2023-05-01 ⋅ Quorum Cyber ⋅ Quorum Cyber
RTM Locker ransomware targets VMware ESXi servers
RTM Locker

2023-03-31 ⋅ vmware ⋅ Threat Analysis Unit
Investigating 3CX Desktop Application Attacks: What You Need to Know
3CX Backdoor

2023-02-03 ⋅ Bleeping Computer ⋅ Sergiu Gatlan
Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide
ESXiArgs

2023-02-03 ⋅ OVHcloud ⋅ Julien Levrard
Ransomware targeting VMware ESXi
ESXiArgs

2022-11-21 ⋅ vmware ⋅ Takahiro Haruyama, Threat Analysis Unit
Threat Analysis: Active C2 Discovery Using Protocol Emulation Part4 (Dacls, aka MATA)
Dacls

2022-11-14 ⋅ vmware ⋅ Bethany Hardin, Deborah Snyder, Lavine Oluoch, Nikki Benoit, Tatiana Vollbrecht
BATLOADER: The Evasive Downloader Malware
BATLOADER

2022-10-27 ⋅ vmware ⋅ Takahiro Haruyama
Threat Analysis: Active C2 Discovery Using Protocol Emulation Part3 (ShadowPad)
ShadowPad

2022-10-25 ⋅ VMware Threat Analysis Unit ⋅ Takahiro Haruyama
Tracking the entire iceberg: long-term APT malware C2 protocol emulation and scanning
ShadowPad Winnti

2022-10-20 ⋅ Fortinet ⋅ Cara Lin
Mirai, RAR1Ransom, and GuardMiner – Multiple Malware Campaigns Target VMware Vulnerability
Mirai