Home>

Malware

ARS

Read More ›

ASN1

Read More ›

Bateleur

Read More ›

Buhtrap

References:

  • # Operation Buhtrap, the trap for Russian accountants - 2015-04-09 - Eset - Jean-Ian Boutin Buhtrap CVE-2012-0158
  • Read More ›

    Cerber

    References:

  • # Cerber ransomware: new, but mature - 2016-03-11 - Malwarebytes - hasherezade Cerber
  • Read More ›

    Fleercivet

    References:

  • # EITest Nabbing Chrome Users with a “Chrome Font” Social Engineering Scheme - 2017-01-17 - Proofpoint - Kafeine EITest Fleercivet
  • Read More ›

    Gootkit

    Read More ›

    Grobios

    References:

  • # Ramnit’s Network of Proxy Servers - 2018-08-05 - Checkpoint Grobios
  • Read More ›

    Hancitor

    Read More ›

    Hawkeye

    References:

  • # Hawkeye Keylogger – Reborn v8: An in-depth campaign analysis - 2018-07-11 - Microsoft - Office 365 Threat Research Hawkeye
  • Read More ›

    Hidden Mellifera

    References:

  • # New Underminer Exploit Kit Delivers Bootkit and Cryptocurrency-mining Malware with Encrypted TCP Tunnel - 2018-07-26 - Trend Micro - Jaromir Horejsi - Joseph C. Chen Underminer Hidden Mellifera
  • Read More ›

    IceID

    References:

  • # Bokbot: The (re)birth of a banker - 2018-09-09 - Fox-IT - Alfred Klason IceID Vawtrak TinyLoader Hancitor
  • Read More ›

    Koler

    Read More ›

    Kovter

    References:

  • # Kovter 2016 – Anti Analysis tricks - 2017-05-11 - Riscy Business - RISCyBusiness Kovter
  • # Threat Actor Profile: KovCoreG, The Kovter Saga - 2017-11-01 - Proofpoint - Kafeine Kovter KovCoreG Angler Nuclear Sakura BlackHole Fiesta Styx EITest
  • # Kovter Uncovered - 2018-08-03 - Github - eWhite Hats Kovter
  • Read More ›

    Locky

    References:

  • # - 2016-02-16 - Proofpoint Locky Neutrino TA505
  • Read More ›

    Lurk

    References:

  • # Lurk Banker Trojan: Exclusively for Russia - 2016-06-10 - Securelist - Alexey Shulmin - Mikhail Prokhorenko Lurk Angler
  • Read More ›

    Madness

    References:

  • # Meet Madness Pro or Few days rise of a Ddos Botnet - 2013-10-14 - MDNC - Kafeine Madness Cool
  • Read More ›

    Mole

    Read More ›

    More_Eggs

    Read More ›

    Osiris

    References:

  • # Kronos Reborn - 2018-07-24 - Proofpoint - Proofpoint Staff Osiris RIG
  • # Osiris: An Enhanced Banking Trojan - 2018-07-31 - Checkoint - Yaroslav Harakhavik - Nikita Fokin Osiris
  • Read More ›

    Otlard

    References:

  • # Inside Jahoo (Otlard.A ?) - A spam Botnet - 2015-11-28 - MDNC - Kafeine Otlard VirtualDonna Angler Nuclear ProxyBack
  • Read More ›

    Parasite HTTP

    References:

  • # Parasite HTTP RAT cooks up a stew of stealthy tricks - - Proofpoint Parasite HTTP
  • Read More ›

    Pitou

    Read More ›

    Princess

    Read More ›

    Princess Evolution

    References:

  • # Ransomware as a Service Princess Evolution Looking for Affiliates - 2018-09-09 - Trend Micro - Joseph C. Chen Princess Evolution RIG
  • Read More ›

    ProxyBack

    Read More ›

    Quasar

    Read More ›

    Sednit

    Read More ›

    Smokebot

    References:

  • # Dissecting Smoke Loader - 2018-07-18 - CertPL - Michał Praszmo Smokebot
  • Read More ›

    StrongPity

    References:

  • # On the StrongPity Waterhole Attacks Targeting Italian and Belgian Encryption Users - 2016-08-03 - Securelist - Kurt Baumgartner StrongPity StrongPity
  • Read More ›

    TinyLoader

    Read More ›

    Vawtrak

    Read More ›

    Xagent

    References:

  • # A Look Into Fysbis: Sofacy' s Linux Backdoor - 2016-02-12 - PaloAlto - Bryan Lee - Rob Downs Xagent APT28
  • # XAgentOSX: Sofacy's XAgent macOS Tool - 2017-02-14 - PaloAlto - Robert Falcone Xagent APT28
  • Read More ›