Click here to download all references as Bib-File.•
2025-01-13
⋅
Halcyon
⋅
Abusing AWS Native Services: Ransomware Encrypting S3 Buckets with SSE-C Codefinger |
2024-12-30
⋅
Fortinet
⋅
Catching "EC2 Grouper"- no indicators required! EC2 Grouper |
2024-12-19
⋅
SpyCloud
⋅
LummaC2 Revisited: What’s Making this Stealer Stealthier and More Lethal Lumma Stealer |
2024-04-16
⋅
Mandiant
⋅
APT44: Unearthing Sandworm VPNFilter BlackEnergy CaddyWiper EternalPetya HermeticWiper Industroyer INDUSTROYER2 Olympic Destroyer PartyTicket RoarBAT Sandworm |
2024-04-04
⋅
Mandiant
⋅
Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies TONERJAM |
2024-01-18
⋅
Detect Mortis Locker Ransomware with YARA Mortis |
2023-11-21
⋅
Palo Alto Networks Unit 42
⋅
Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors BeaverTail InvisibleFerret WageMole |
2023-09-29
⋅
ESET Research
⋅
Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company CLOUDBURST LightlessCan miniBlindingCan sRDI |
2023-09-15
⋅
Migeel.sk
⋅
Reverse engineering natively-compiled .NET apps |
2023-08-23
⋅
Logpoint
⋅
Defending Against 8base: Uncovering Their Arsenal and Crafting Responses 8Base Phobos SmokeLoader SystemBC |
2023-07-24
⋅
M4lcode
⋅
Deep Analysis of Vidar Stealer Arkei Stealer Vidar |
2023-06-06
⋅
Apophis133
⋅
RedLine Technical Analysis Report RedLine Stealer |
2023-04-28
⋅
Twitter (@MichalKoczwara)
⋅
Tweet on hunting BRC4 infrastructure Brute Ratel C4 |
2023-04-13
⋅
GOV.PL
⋅
HALFRIG - Malware Analysis Report HALFRIG |
2023-02-02
⋅
0x0d4y
⋅
[Zero2Automated] Complete Custom Sample Challenge Analysis CruLoader |
2023-01-04
⋅
CSO Online
⋅
Cyberattacks against governments jumped 95% in last half of 2022, CloudSek says BlueHornet |
2022-12-19
⋅
kienmanowar Blog
⋅
[Z2A]Bimonthly malware challege – Emotet (Back From the Dead) Emotet |
2022-09-26
⋅
Palo Alto Networks Unit 42
⋅
Hunting for Unsigned DLLs to Find APTs PlugX Raspberry Robin Roshtyak |
2022-08-11
⋅
Group-IB
⋅
Challenge accepted Detecting MaliBot, a fresh Android banking trojan, with a Fraud Protection solution |
2022-08-01
⋅
Qualys
⋅
Here’s a Simple Script to Detect the Stealthy Nation-State BPFDoor BPFDoor |