Malpedia Library

Click here to download all references as Bib-File.•

2024-12-17 ⋅ Proofpoint ⋅ David Galazin, Konstantin Klinger, Nick Attfield, Pim Trouerbach
Hidden in Plain Sight: TA397’s New Attack Chain Delivers Espionage RATs
MiyaRAT WmRAT HAZY TIGER

2024-11-18 ⋅ Kroll ⋅ Dave Truman, George Glass
CARBANAK (aka ANUNAK) Distributed via IDATLOADER (aka HIJACKLOADER)
Carbanak HijackLoader

2024-11-13 ⋅ Bitdefender ⋅ Martin Zugec
ShrinkLocker (+Decryptor): From Friend to Foe, and Back Again
ShrinkLocker

2024-10-11 ⋅ HarfangLab ⋅ Alice Climent-Pommeret
HijackLoader evolution: abusing genuine signing certificates
HijackLoader

2024-09-26 ⋅ Palo Alto Networks Unit 42 ⋅ Daniel Frank, Lior Rochberger
Unraveling Sparkling Pisces’s Tool Set: KLogEXE and FPSpy
FPSpy KLogEXE Kimsuky

2024-09-10 ⋅ Stacklok ⋅ Stacklok
Dependency hijacking: Dissecting North Korea’s new wave of DeFi-themed open source attacks targeting developers
BeaverTail InvisibleFerret

2024-08-30 ⋅ TRUESEC ⋅ Mattias Wåhlén, Nicklas Keijser
Dissecting the Cicada
Cicada3301

2024-08-22 ⋅ Mandiant ⋅ Aaron Lee, Praveeth DSouza
PEAKLIGHT: Decoding the Stealthy Memory-Only Malware
CryptBot Emmenhtal HijackLoader Lumma Stealer

2024-07-10 ⋅ Akamai ⋅ Allen West, Kyle Lefton, Sam Tinklenberg
CVE-2024-4577 Exploits in the Wild One Day After Disclosure
Tsunami Ghost RAT xmrig

2024-06-19 ⋅ Fortinet ⋅ Pei Han Liao
Fickle Stealer Distributed via Multiple Attack Chain
Fickle Stealer

2024-05-30 ⋅ Cisco Talos ⋅ Asheer Malhotra
LilacSquid: The stealthy trilogy of PurpleInk, InkBox and InkLoader
purpleink LilacSquid

2024-05-06 ⋅ Zscaler ⋅ Muhammed Irfan V A
HijackLoader Updates
HijackLoader

2024-02-07 ⋅ Malwarebytes ⋅ Mark Stockley
How to tell if your toothbrush is being used in a DDoS attack

2024-02-07 ⋅ CrowdStrike ⋅ Donato Onofri, Emanuele Calvelli
HijackLoader Expands Techniques to Improve Defense Evasion
HijackLoader

2023-10-23 ⋅ SarlackLab ⋅ John Faria
Advice For Catching a RedLine Stealer
RedLine Stealer

2023-09-28 ⋅ HarfangLab ⋅ Claudio Teixeira
Loader Galore - TaskLoader at the start of a Pay-per-Install Infection Chain
CustomerLoader Fabookie LgoogLoader SmokeLoader

2023-09-18 ⋅ Alpine Security ⋅ Borja Merino
HijackLoader Targets Hotels: A Technical Analysis
HijackLoader

2023-09-08 ⋅ Zscaler ⋅ Zscaler
Technical Analysis of HijackLoader
HijackLoader

2023-08-30 ⋅ Nisos ⋅ Vincas Čižiūnas
Trickbot in Light of Trickleaks Data
TrickBot

2023-07-27 ⋅ X (@BlackLotusLabs) ⋅ Black Lotus Labs
Tweet on update on AVrecon bot's migration to new infrastructure
AVrecon