Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-04-27ReversingLabsCarolynn van Arsdale
@online{arsdale:20230427:week:7f9985d, author = {Carolynn van Arsdale}, title = {{The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries}}, date = {2023-04-27}, organization = {ReversingLabs}, url = {https://www.reversinglabs.com/blog/the-week-in-security-possible-colonial-pipeline-2.0-ransomware-hurts-small-american-eateries}, language = {English}, urldate = {2023-11-17} } The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries
2022-07-27ReversingLabsJoseph Edwards
@online{edwards:20220727:threat:6aaf018, author = {Joseph Edwards}, title = {{Threat analysis: Follina exploit fuels 'live-off-the-land' attacks}}, date = {2022-07-27}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/threat-analysis-follina-exploit-powers-live-off-the-land-attacks}, language = {English}, urldate = {2022-08-08} } Threat analysis: Follina exploit fuels 'live-off-the-land' attacks
Cobalt Strike MimiKatz
2022-04-08ReversingLabsPaul Roberts
@online{roberts:20220408:conversinglabs:270c740, author = {Paul Roberts}, title = {{ConversingLabs Ep. 2: Conti pivots as ransomware as a service struggles}}, date = {2022-04-08}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/conversinglabs-ep-2-conti-pivots-as-ransomware-as-a-service-struggles}, language = {English}, urldate = {2022-06-09} } ConversingLabs Ep. 2: Conti pivots as ransomware as a service struggles
Conti Emotet TrickBot
2021-07-15ReversingLabsRobert Simmons
@online{simmons:20210715:data:8286b8f, author = {Robert Simmons}, title = {{Data Exfiltrator - A New Tactic for Ransomware Adversaries}}, date = {2021-07-15}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/data-exfiltrator}, language = {English}, urldate = {2021-07-20} } Data Exfiltrator - A New Tactic for Ransomware Adversaries
DataExfiltrator
2021-03-02ReversingLabsKarlo Zanki
@online{zanki:20210302:malware:b342e08, author = {Karlo Zanki}, title = {{Malware in images}}, date = {2021-03-02}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/malware-in-images}, language = {English}, urldate = {2021-03-16} } Malware in images
2020-12-16ReversingLabsTomislav Pericin
@online{pericin:20201216:sunburst:02a2fd8, author = {Tomislav Pericin}, title = {{SunBurst: the next level of stealth SolarWinds compromise exploited through sophistication and patience}}, date = {2020-12-16}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/sunburst-the-next-level-of-stealth}, language = {English}, urldate = {2020-12-17} } SunBurst: the next level of stealth SolarWinds compromise exploited through sophistication and patience
SUNBURST
2020-12-14SophosRichard Harang
@online{harang:20201214:sophosreversinglabs:20ea30b, author = {Richard Harang}, title = {{Sophos-ReversingLabs (SOREL) 20 Million sample malware dataset}}, date = {2020-12-14}, organization = {Sophos}, url = {https://ai.sophos.com/2020/12/14/sophos-reversinglabs-sorel-20-million-sample-malware-dataset/}, language = {English}, urldate = {2020-12-15} } Sophos-ReversingLabs (SOREL) 20 Million sample malware dataset
2020-11-16ReversingLabsRobert Simmons
@online{simmons:20201116:poorweb:ef09841, author = {Robert Simmons}, title = {{PoorWeb - Hitching a Ride on Hangul}}, date = {2020-11-16}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/poorweb-exploiting-document-formats}, language = {English}, urldate = {2020-11-18} } PoorWeb - Hitching a Ride on Hangul
PoorWeb
2020-09-22ReversingLabsKarlo Zanki
@online{zanki:20200922:taidoor:7f1cae1, author = {Karlo Zanki}, title = {{Taidoor - a truly persistent threat}}, date = {2020-09-22}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/taidoor-a-truly-persistent-threat}, language = {English}, urldate = {2020-10-05} } Taidoor - a truly persistent threat
taidoor
2020-07-10ReversingLabsVitali Kremez, Christiaan Beek, Tom Ueltschi, Hilko Bengen, Jo Johnson, Cooper Quintin, Wyatt Roersma, Tomislav Pericin
@online{kremez:20200710:yara:9b51a77, author = {Vitali Kremez and Christiaan Beek and Tom Ueltschi and Hilko Bengen and Jo Johnson and Cooper Quintin and Wyatt Roersma and Tomislav Pericin}, title = {{YARA Rules talks and presentation of REVERSING 2020}}, date = {2020-07-10}, organization = {ReversingLabs}, url = {https://register.reversinglabs.com/reversing2020/session-videos}, language = {English}, urldate = {2020-07-11} } YARA Rules talks and presentation of REVERSING 2020
2020-06-23ReversingLabsKarlo Zanki
@online{zanki:20200623:hidden:807b898, author = {Karlo Zanki}, title = {{Hidden Cobra - from a shed skin to the viper’s nest}}, date = {2020-06-23}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/hidden-cobra}, language = {English}, urldate = {2020-06-23} } Hidden Cobra - from a shed skin to the viper’s nest
Bankshot PEBBLEDASH TAINTEDSCRIBE
2020-06-05ReversingLabsRobert Simmons
@online{simmons:20200605:retread:86b93a6, author = {Robert Simmons}, title = {{Retread Ransomware: Identifying Satana to Understand "CoronaVirus"}}, date = {2020-06-05}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/retread-ransomware}, language = {English}, urldate = {2020-06-11} } Retread Ransomware: Identifying Satana to Understand "CoronaVirus"
Satana
2020-01-31ReversingLabsRobert Simmons
@online{simmons:20200131:rats:d8a4021, author = {Robert Simmons}, title = {{RATs in the Library: Remote Access Trojans Hide in Plain "Public" Site}}, date = {2020-01-31}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/rats-in-the-library}, language = {English}, urldate = {2020-02-03} } RATs in the Library: Remote Access Trojans Hide in Plain "Public" Site
CyberGate LimeRAT NjRAT Quasar RAT Revenge RAT
2020-01-24ReversingLabsRobert Simmons
@online{simmons:20200124:hunting:f99f1f9, author = {Robert Simmons}, title = {{Hunting for Ransomware}}, date = {2020-01-24}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/hunting-for-ransomware}, language = {English}, urldate = {2020-01-29} } Hunting for Ransomware
Ryuk
2019-09-10ReversingLabsJosip Milić
@online{mili:20190910:mirai:906e0a9, author = {Josip Milić}, title = {{Mirai Botnet Continues to Plague IoT Space}}, date = {2019-09-10}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/mirai-botnet-continues-to-plague-iot-space}, language = {English}, urldate = {2020-01-13} } Mirai Botnet Continues to Plague IoT Space
Mirai
2019-03-27ReversingLabsTomislav Pericin
@online{pericin:20190327:forging:a9c71d8, author = {Tomislav Pericin}, title = {{Forging the ShadowHammer}}, date = {2019-03-27}, organization = {ReversingLabs}, url = {https://blog.reversinglabs.com/blog/forging-the-shadowhammer}, language = {English}, urldate = {2020-01-06} } Forging the ShadowHammer
shadowhammer
2017-10-26Reversing LabsNone
@online{none:20171026:reversinglabs:d3543db, author = {None}, title = {{ReversingLabs' YARA rule detects BadRabbit encryption routine specifics}}, date = {2017-10-26}, organization = {Reversing Labs}, url = {https://www.reversinglabs.com/newsroom/news/reversinglabs-yara-rule-detects-badrabbit-encryption-routine-specifics.html}, language = {English}, urldate = {2019-10-17} } ReversingLabs' YARA rule detects BadRabbit encryption routine specifics
EternalPetya