Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-07-08Medium s2wlabSojun Ryu
Analysis of Lazarus malware abusing Non-ActiveX Module in South Korea
Racket Downloader
2021-07-08Medium walmartglobaltechHarold Ogden, Jason Reaves
Amadey stealer plugin adds Mikrotik and Outlook harvesting
Amadey
2021-07-07Medium s2wlabSeunghoe Kim
Deep analysis of KPOT Stealer
KPOT Stealer
2021-07-06Medium walmartglobaltechJason Reaves, Joshua Platt
TA505 adds GoLang crypter for delivering miners and ServHelper
ServHelper
2021-07-03Medium AK1001AK1001
Analyzing Cobalt Strike PowerShell Payload
Cobalt Strike
2021-07-03Medium DoublepulsarKevin Beaumont
Kaseya supply chain attack delivers mass ransomware event to US companies
REvil
2021-06-29Medium hidocohenHido Cohen
GuLoader’s Anti-Analysis Techniques
CloudEyE
2021-06-29Medium MITRE-EngenuityJon Baker, Nicholas Amon
Security Control Mappings: A Starting Point for Threat-Informed Defense
2021-06-23Medium s2wlabSojun Ryu
Deep analysis of REvil Ransomware
REvil
2021-06-21Medium gabrielcurrieGabriel Currie
Ready for (nearly) anything: Five things to prepare for a cyber security incident
2021-06-21Medium elis531989Eli Salem
Dissecting and automating Hancitor’s config extraction
Hancitor
2021-06-16Medium BI.ZONEAnton Medvedev, Vadim Khrykov
Hunting Down MS Exchange Attacks. Part 2 (CVE-2020–0688, CVE-2020–16875, CVE-2021–24085)
2021-06-08Medium BI.ZONEMaxim Suhanov
Measured Boot and Malware Signatures: exploring two vulnerabilities found in the Windows loader
2021-06-07Medium walmartglobaltechJason Reaves, Joshua Platt
Inside the SystemBC Malware-As-A-Service
Ryuk SystemBC TrickBot
2021-06-03Medium s2wlabDenise Dasom Kim, Hyunmin Suh, Jungyeon Lim, YH Jeong
W1 Jun | EN | Story of the week: Ransomware on the Darkweb
DarkSide Babuk DarkSide
2021-06-02Medium CyCraftCyCraft Technology Corp
China-Linked Threat Group Targets Taiwan Critical Infrastructure, Smokescreen Ransomware
Cobalt Strike ColdLock
2021-06-01Medium mergeneMehmet Ergene
Detecting Initial Access: HTML Smuggling and ISO Images — Part 2
2021-06-01Medium mergeneMehmet Ergene
Detecting Initial Access: HTML Smuggling and ISO Images — Part 1
2021-05-28Medium s2wlabSojun Ryu
Deep Analysis of Vidar Stealer
Vidar
2021-05-25Medium s2wlabDenise Dasom Kim, Hyunmin Suh, Jungyeon Lim
W4 May | EN | Story of the week: Ransomware on the Darkweb
Babuk REvil