Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-04-21Avast DecodedDaniel Beneš
@online{bene:20220421:warez:b31715c, author = {Daniel Beneš}, title = {{Warez users fell for Certishell}}, date = {2022-04-21}, organization = {Avast Decoded}, url = {https://decoded.avast.io/danielbenes/warez-users-fell-for-certishell/}, language = {English}, urldate = {2022-04-29} } Warez users fell for Certishell
2022-04-14Avast DecodedVladimir Martyanov
@online{martyanov:20220414:zloader:23c520a, author = {Vladimir Martyanov}, title = {{Zloader 2: The Silent Night}}, date = {2022-04-14}, organization = {Avast Decoded}, url = {https://decoded.avast.io/vladimirmartyanov/zloader-the-silent-night/}, language = {English}, urldate = {2022-04-15} } Zloader 2: The Silent Night
ISFB Raccoon Zloader
2022-04-07Avast DecodedPavel Novák, Jan Rubín
@online{novk:20220407:parrot:9c74f9b, author = {Pavel Novák and Jan Rubín}, title = {{Parrot TDS takes over web servers and threatens millions}}, date = {2022-04-07}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janrubin/parrot-tds-takes-over-web-servers-and-threatens-millions/}, language = {English}, urldate = {2022-04-08} } Parrot TDS takes over web servers and threatens millions
FAKEUPDATES Parrot TDS Parrot TDS WebShell NetSupportManager RAT
2022-03-28AvastThreat Intelligence Team
@online{team:20220328:avast:03620fb, author = {Threat Intelligence Team}, title = {{Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool}}, date = {2022-03-28}, organization = {Avast}, url = {https://decoded.avast.io/threatintel/avast-finds-compromised-philippine-navy-certificate-used-in-remote-access-tool/}, language = {English}, urldate = {2022-04-05} } Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool
Unidentified 091
2022-03-18AvastMartin Hron
@online{hron:20220318:mris:47b15bc, author = {Martin Hron}, title = {{Mēris and TrickBot standing on the shoulders of giants}}, date = {2022-03-18}, organization = {Avast}, url = {https://decoded.avast.io/martinhron/meris-and-trickbot-standing-on-the-shoulders-of-giants/}, language = {English}, urldate = {2022-03-23} } Mēris and TrickBot standing on the shoulders of giants
Glupteba Proxy Glupteba TrickBot
2022-03-16AvastMartin Chlumecký
@online{chlumeck:20220316:dirtymoe:48e136e, author = {Martin Chlumecký}, title = {{DirtyMoe: Worming Modules}}, date = {2022-03-16}, organization = {Avast}, url = {https://decoded.avast.io/martinchlumecky/dirtymoe-5/}, language = {English}, urldate = {2022-03-17} } DirtyMoe: Worming Modules
DirtyMoe
2022-03-09AvastVladimir Martyanov
@online{martyanov:20220309:raccoon:b35569a, author = {Vladimir Martyanov}, title = {{Raccoon Stealer: “Trash panda” abuses Telegram}}, date = {2022-03-09}, organization = {Avast}, url = {https://decoded.avast.io/vladimirmartyanov/raccoon-stealer-trash-panda-abuses-telegram}, language = {English}, urldate = {2022-03-10} } Raccoon Stealer: “Trash panda” abuses Telegram
Raccoon
2022-03-03Avast DecodedThreat Research Team
@online{team:20220303:help:d086921, author = {Threat Research Team}, title = {{Help for Ukraine: Free decryptor for HermeticRansom ransomware}}, date = {2022-03-03}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatresearch/help-for-ukraine-free-decryptor-for-hermeticransom-ransomware/}, language = {English}, urldate = {2022-03-03} } Help for Ukraine: Free decryptor for HermeticRansom ransomware
PartyTicket
2022-02-07SecurityAffairsPierluigi Paganini
@online{paganini:20220207:avast:12bb4e5, author = {Pierluigi Paganini}, title = {{Avast released a free decryptor for TargetCompany ransomware}}, date = {2022-02-07}, organization = {SecurityAffairs}, url = {https://securityaffairs.co/wordpress/127761/malware/targetcompany-ransomware-decryptor.html}, language = {English}, urldate = {2022-02-10} } Avast released a free decryptor for TargetCompany ransomware
TargetCompany
2022-02-07Avast DecodedAvast Threat Research Team
@online{team:20220207:decrypted:f204a1f, author = {Avast Threat Research Team}, title = {{Decrypted: TargetCompany Ransomware}}, date = {2022-02-07}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatresearch/decrypted-targetcompany-ransomware/}, language = {English}, urldate = {2022-02-10} } Decrypted: TargetCompany Ransomware
TargetCompany
2022-02-03AvastDavid Álvarez Pérez, Jan Neduchal
@online{prez:20220203:analysis:73b6f36, author = {David Álvarez Pérez and Jan Neduchal}, title = {{Analysis of Attack Against National Games of China Systems}}, date = {2022-02-03}, organization = {Avast}, url = {https://decoded.avast.io/janneduchal/analysis-of-attack-against-national-games-of-china-systems/}, language = {English}, urldate = {2022-02-04} } Analysis of Attack Against National Games of China Systems
2022-01-25AvastAnh ho, Igor Morgenstern
@online{ho:20220125:chasing:f22d873, author = {Anh ho and Igor Morgenstern}, title = {{Chasing Chaes Kill Chain}}, date = {2022-01-25}, organization = {Avast}, url = {https://decoded.avast.io/anhho/chasing-chaes-kill-chain/}, language = {English}, urldate = {2022-01-28} } Chasing Chaes Kill Chain
Chaes
2022-01-24AvastPavlína Kopecká
@online{kopeck:20220124:web:0c4cbcc, author = {Pavlína Kopecká}, title = {{Web Skimming Attacks Using Google Tag Manager}}, date = {2022-01-24}, organization = {Avast}, url = {https://decoded.avast.io/pavlinakopecka/web-skimming-attacks-using-google-tag-manager/}, language = {English}, urldate = {2022-01-25} } Web Skimming Attacks Using Google Tag Manager
2021-12-01AvastJan Rubín, Jakub Kaloč
@online{rubn:20211201:toss:0b5f12e, author = {Jan Rubín and Jakub Kaloč}, title = {{Toss a Coin to your Helper (Part 2 of 2)}}, date = {2021-12-01}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/toss-a-coin-to-your-helper}, language = {English}, urldate = {2021-12-07} } Toss a Coin to your Helper (Part 2 of 2)
2021-11-09Twitter (@AvastThreatLabs)
@online{avastthreatlabs:20211109:by:9f805da, author = {Twitter (@AvastThreatLabs)}, title = {{Tweet by Avast on a new Android Banker they call MasterFred}}, date = {2021-11-09}, url = {https://twitter.com/AvastThreatLabs/status/1458162276708483073}, language = {English}, urldate = {2021-11-10} } Tweet by Avast on a new Android Banker they call MasterFred
MasterFred
2021-11-03AvastMartin Chlumecký
@online{chlumeck:20211103:dirtymoe:93da365, author = {Martin Chlumecký}, title = {{DirtyMoe: Deployment}}, date = {2021-11-03}, organization = {Avast}, url = {https://decoded.avast.io/martinchlumecky/dirtymoe-4/}, language = {English}, urldate = {2021-11-08} } DirtyMoe: Deployment
DirtyMoe
2021-10-27Avast DecodedAvast
@online{avast:20211027:avast:6b44ea1, author = {Avast}, title = {{Avast releases decryptor for AtomSilo and LockFile ransomware}}, date = {2021-10-27}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatintel/decryptor-for-atomsilo-and-lockfile-ransomware/}, language = {English}, urldate = {2021-11-08} } Avast releases decryptor for AtomSilo and LockFile ransomware
ATOMSILO LockFile
2021-10-25AvastJakub Vávra
@online{vvra:20211025:ultimasms:9720c12, author = {Jakub Vávra}, title = {{UltimaSMS: A widespread premium SMS scam on the Google Play Store}}, date = {2021-10-25}, organization = {Avast}, url = {https://blog.avast.com/premium-sms-scam-apps-on-play-store-avast}, language = {English}, urldate = {2021-11-03} } UltimaSMS: A widespread premium SMS scam on the Google Play Store
UltimaSMS
2021-10-12AvastJan Rubín, Jakub Kaloč
@online{rubn:20211012:king:068a3d8, author = {Jan Rubín and Jakub Kaloč}, title = {{The King is Dead, Long Live MyKings! (Part 1 of 2)}}, date = {2021-10-12}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/the-king-is-dead-long-live-mykings/}, language = {English}, urldate = {2021-10-25} } The King is Dead, Long Live MyKings! (Part 1 of 2)
MyKings Spreader
2021-09-20Avast DecodedAnh ho
@online{ho:20210920:blustealer:9beaf4b, author = {Anh ho}, title = {{BluStealer: from SpyEx to ThunderFox}}, date = {2021-09-20}, organization = {Avast Decoded}, url = {https://decoded.avast.io/anhho/blustealer/}, language = {English}, urldate = {2021-09-22} } BluStealer: from SpyEx to ThunderFox
BluStealer