Malpedia Library

Click here to download all references as Bib-File.•

2025-02-12 ⋅ cyber.wtf blog ⋅ Hendrik Eckardt, Leonard Rapp
Unpacking Pyarmor v8+ scripts
AsyncRAT DCRat XWorm

2025-02-02 ⋅ Team82 ⋅ Team82
Do the CONTEC CMS8000 Patient Monitors Contain a Chinese Backdoor? The Reality is More Complicated…
CMS8000 Backdoor

2025-01-14 ⋅ Vertex ⋅ Savage
More Than Malware Families: Retooling Our Approach to Tracking Software

2024-12-19 ⋅ SpyCloud ⋅ James
LummaC2 Revisited: What’s Making this Stealer Stealthier and More Lethal
GhostSocks Lumma Stealer

2024-12-16 ⋅ Morphisec ⋅ Morphisec Labs, Nadav Lorber
CoinLurker: The Stealer Powering the Next Generation of Fake Updates
ClearFake FAKEUPDATES

2024-10-23 ⋅ Forescout ⋅ Vedere Labs
ICS Threats: Malware Targeting OT? It’s More Common Than You Think
Aisuru

2024-10-22 ⋅ Twitter (@threatinsight) ⋅ Threat Insight
Twitter Thread attributing Voldemort to TA415 (APT41, BrassTyphoon)
Voldemort

2024-10-03 ⋅ Aqua ⋅ Assaf Morag, Idan Revivo
perfctl: A Stealthy Malware Targeting Millions of Linux Servers
perfctl

2024-09-13 ⋅ Aqua Nautilus ⋅ Assaf Morag
Hadooken Malware Targets Weblogic Applications
Hadooken

2024-08-29 ⋅ Proofpoint ⋅ Pim Trouerbach, Selena Larson, Tommy Madjar
The Malware That Must Not Be Named: Suspected Espionage Campaign Delivers “Voldemort”
Voldemort

2024-08-22 ⋅ Mandiant ⋅ Aaron Lee, Praveeth DSouza
PEAKLIGHT: Decoding the Stealthy Memory-Only Malware
CryptBot Emmenhtal HijackLoader Lumma Stealer

2024-08-19 ⋅ Aquasec ⋅ Assaf Morag
PG_MEM: A Malware Hidden in the Postgres Processes
PG_MEM XMRIG

2024-08-14 ⋅ Aquasec ⋅ Assaf Morag
Gafgyt Malware Variant Exploits GPU Power and Cloud Native Environments
Bashlite

2024-08-02 ⋅ Aqua Nautilus ⋅ Assaf Morag
Panamorfi: A New Discord DDoS Campaign
Mineping

2024-06-21 ⋅ Cisco Talos ⋅ Ashley Shen, Chetan Raghuprasad
SneakyChef espionage group targets government agencies with SugarGh0st and more infection techniques
SneakyChef

2024-06-10 ⋅ The Hacker News ⋅ Ravie Lakshmanan
More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack
More_eggs

2024-06-06 ⋅ Morphisec ⋅ Arnold Osipov
Howling at the Inbox: Sticky Werewolf’s Latest Malicious Aviation Attacks
Angry Likho

2024-06-05 ⋅ Qurakslab ⋅ Fabrice Rossi, Florian Yger, Riccardo Mori, Robin David, Roxane Cohen
QBinDiff: A modular differ to enhance binary diffing and graph alignment (Slides)

2024-06-05 ⋅ ⋅ QuarksLab ⋅ Fabrice Rossi, Florian Yger, Riccardo Mori, Robin David, Roxane Cohen
QBinDiff: A modular differ to enhance binary diffing and graph alignment (Video)

2024-05-22 ⋅ Kaspersky Labs ⋅ GReAT
Stealers, stealers and more stealers