MUSTANG PANDA x PLUGX - Analysis of the January 2026 sample: a multi-layer execution chain - 惯性聚合

推荐订阅源

WordPress大学

LINUX DO - 最新话题

Help Net Security

让小产品的独立变现更简单 - ezindie.com

Hugging Face - Blog

Google DeepMind News

博客园 - 司徒正美

奇客Solidot–传递最新科技情报

Stack Overflow Blog

Check Point Blog

阮一峰的网络日志

博客园 - 叶小钗

Netflix TechBlog - Medium

酷壳 – CoolShell

Schneier on Security

Engineering at Meta

博客园 - 三生石上(FineUI控件)

Simon Willison's Weblog

CERT Recently Published Vulnerability Notes

The GitHub Blog

Security @ Cisco Blogs

Google Developers Blog

Threat Intelligence Blog | Flashpoint

Cyber Attacks, Cyber Crime and Cyber Security

Exploit-DB.com RSS Feed

Recent Announcements

博客园 - 聂微东

The Register - Security

Last Week in AI

人人都是产品经理

PCI Perspectives

Threat Research - Cisco Blogs

有赞技术团队

Hacker News - Newest: "LLM"

Tailwind CSS Blog

博客园_首页

DataBreaches.Net

Palo Alto Networks Blog

Malpedia Library (Latest)

Remus: Unmasking The 64-bit Variant of the Infamous Lumma Stealer North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack ProxyBox: Socks5Systemz Lives On All thriller, no (malware) filler APT28 exploit routers to enable DNS hijacking operations Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure MacOS hacking part 13: sysinfo stealer via VirusTotal API. Simple C example Deep Technical Analysis Of Payload Ransomware Targeting ESXi Environment Active Magecart Campaign Targets Spain, Steals Card Data via Hijacked eStores for Bank Fraud A Multi-Vector DDoS Botnet Targeting Organizations Worldwide Detect SnappyClient C&C Traffic Using PacketSmith + Yara-X Detection Module Russian Intelligence Services Target Commercial Messaging Application Accounts Government of Iran Cyber Actors Deploy Telegram C2 to Push Malware to Identified Targets PAM module injection. Simple C example cron jobs. Simple C example RegPhantom Backdoor Threat Analysis Re-opened applications. Simple C example Google Cloud Storage Phishing Deploying Remcos RAT a new Android RAT turning infected devices into potential residential proxy nodes MUSTANG PANDA × PLUGX - From deceptive LNK to multi-transport backdoor caffeinate LOLBin. Simple C example How UNC6692 Employed Social Engineering to Deploy a Custom Malware Suite The Group Theory Inside Bedep's DGA Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories WannaCry Malware Analysis - How YOU Could have Saved the World How 109 Fake GitHub Repositories Delivered SmartLoader and StealC Mobile malware development trick 3. CPU info logger: anti-VM and anti-sandbox. Simple Android (Kotlin) example. We Dumped a Live Kimsuky C2 and Recovered Every Stage of the Kill Chain: CHM Dropper, VBScript Stager, PowerShell Keylogger Quasar Linux (QLNX) – A Silent Foothold in the Supply Chain: Inside a Full-Featured Linux RAT With Rootkit, PAM Backdoor, Credential Harvesting Capabilities [KRYBIT] – Ransomware Victim: Hacked 0APT Pro-Iranian Actor Ababil of Minab Claims Cyberattack on LA Metro (LACMTA) Lazarus Group Uses Git Hooks To Hide Malware Mystery ShadowBrokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet Tweet about SpankRat Tweet about HanGhost Tweet about GeckoStealer Tweet about VoltStealer Tweet about LedgerChecker Stealer NotPetya Malware Analysis - Bye, boot partition. I'll miss you North Korea's abuse of Cloudflare Workers and Pages Hunting Lazarus Part VII: The Server That Was Not Just FTP Weekly Detected Threats - April 21 Where Have All the Complex Windows Malware and Their Analyses Gone? Multi-stage malware delivery campaign using SEO poisoning and serverless infrastructure Analysis on Malware that attacks Israel's Water treatment facilities LATAM Under Siege: Agent Tesla’s 18-Month Credential Theft Campaign Against Chilean Enterprises New TrickMo Variant: Device Take Over malware targeting Banking, Fintech, Wallet & Auth apps New Phishing Campaign Targets US with Credential Theft: What CISOs Need to Know osascript LOLBin. Simple C example Zynap’s Next-Gen Sandbox Redefines Automatic Malware Analysis X.com - Gen Threat Labs Tweet about Lalia Ransomware Darcula aka. "Magic Cat" Fake installer ships Rust Infostealer Trojanized MS Teams Installers Deliver Multi-Stage Loader and Backdoor MustangPanda New Backdoor LotusLite Analyzing Void Dokkaebi’s Cython-Compiled InvisibleFerret Malware Fake Microsoft Teams download sites are being used to deliver ValleyRAT via DLL sideloading Pivoting on a malspam infrastructure delivering JS malware backed by bulletproof networks Inside Red Lamassu’s JFMBackdoor Fresh mischief and digital shenanigans Anatomy of a nation-state botnet THUS SPOKE…THE GENTLEMEN Industrialized Smishing Infrastructure Targeting the UAE and Singapore Transportation, Government, and Logistics Sectors TCLBANKER: Brazilian Banking Trojan Spreading via WhatsApp and Outlook Detecting Nimbus Manticore and their sideloading infection chains Famous Chollima Targets PHP Developers Through Compromised Packagist Package Malware shellcode delivery via signal Fast and Furious – Nimbus Manticore Operations During the Iranian Conflict Inside the Cross-Platform Propagation of a New Gafgyt Variant C0XMO Believe me I am MustangPanda UNK_DeadDrop Phishing Campaign Targets Developers to Steal Cryptocurrency Graph ML PyPI Packages Deploy Cross-Platform Memory Scrapers, AI Analyst Misdirection, and a Wiper Deterrent Lazarus Group's Latest: Brandjacking Campaign on npm Miasma Worm Campaign Spreads with New PyPI Wave The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs Russian spy agency says foreign spies turned officials' smartphones into surveillance devices Evolutions from 2024 to 2026 DriveSurge Turns Trusted Websites Into ClickFix Malware Traps A Russia-nexus group leveraging AI across state-aligned operations A Russia-nexus group leveraging AI across state-aligned operations Sapphire Sleet Targets macOS in Multi-Stage Intrusion Campaign The GHOST STADIUM Score: Billions At Stake At The World’s Largest Football Tournament A New Threat Actor Targeting the Cryptocurrency Industry's Software Development Infrastructure

MUSTANG PANDA x PLUGX - Analysis of the January 2026 sample: a multi-layer execution chain

Fraunhofer FKIE · 2026-06-01 · via Malpedia Library (Latest)

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。