ewdoor campaign samples + paper:)

93 cobalt strike beacons:)

apt37 chinotto samples:)

apt 27 samples:)

android.cleaningservice:) , malware campaign targetng malaysia

apt 38 samples + paper:)

magnat samples:)

FIN13; Mandiant: FIN13, a Cybercriminal Threat Actor Focused on Mexico

We've updated our paper collection

-XLLPOC, code execution via Excel by, Excel DLL loader (XLL files), being sold on various forums
-ZipExec, executing password protected zip files by, a technique currently used by Emotet

Check it out: https://vx-underground.org

blackcat ransomware sample:) (rust ransomware)

Gomorrah stealer group, or an individual who purchased Gomorrah stealer, left the panel source code exposed online. We have added it to the VXUG Panel source code collection.

https://github.com/vxunderground/MalwareSourceCode/tree/main/Panel

Malware using LOG4J exploit:)

Even more malware using LOG4J exploit:)

Per request, even MORE LOG4J samples:)

Updates to vx-underground:

APT collection:
2021.11.10/Void Balaur
2021.12.06/Nobelium
2021.12.07/FIN13

Malware collection:
Cuba Ransomware
Diavol Ransomware
Log4J Malware
Owowa
Quantum Ransomware
Tor2Mine

Check it out here: http://vx-underground.org

"Espionage Campaign Targets Telecoms Organizations across Middle East and Asia" :) Samples + Paper

We've made large updates to the VXUG APT collection

2021.11.24/APT-38
2021.12.07/TeamTNT
2021.12.08/ShadowPad
2021.12.13/APT-C-61
2021.12.13/Kimsuky
2021.12.14/DarkWatchman
2021.12.14/DoNot
2021.12.15/APT31
2021.12.15/Jolly Jellyfish

Check it out here: https://vx-underground.org

We've updated the VXUG Malware sample collection:

- GoLang-based Log4J malware
- BlackCat Ransomware (ALPHV), Rust-based and uses LLVM for obfuscation
- Yanluowang Ransomware, ransomware that is signed....

Check it out here: https://vx-underground.org