Click here to download all references as Bib-File.•
| 2021-03-27
⋅
Github (StrangerealIntel)
⋅
Terraloader: Congrats, you have a new fake job! TerraLoader |
| 2021-03-24
⋅
Twitter (@VK_intel)
⋅
Tweet on REvil ransomware REvil |
| 2021-03-11
⋅
YouTube ( Malware_Analyzing_&_RE_Tips_Tricks)
⋅
Formbook Reversing - Part1 [Formbook .NET loader/injector analyzing, decrypting, unpacking, patching] Formbook |
| 2021-03-04
⋅
360 netlab
⋅
Gafgtyt_tor and Necro are on the move again Bashlite N3Cr0m0rPh Keksec |
| 2021-03-01
⋅
YouTube ( Malware_Analyzing_&_RE_Tips_Tricks)
⋅
Ryuk Ransomware - Advanced using of Scylla for Imports reconstruction Ryuk |
| 2021-02-26
⋅
YouTube (Black Hat)
⋅
FASTCash and INJX_Pure: How Threat Actors Use Public Standards for Financial Fraud FastCash |
| 2021-02-22
⋅
YouTube ( Malware_Analyzing_&_RE_Tips_Tricks)
⋅
Ryuk Ransomware API Resolving in 10 minutes Ryuk |
| 2021-02-17
⋅
cyber00011011.github.io
⋅
Understand Shellcode with CyberChef |
| 2021-02-05
⋅
Twitter (@8th_grey_owl)
⋅
Tweet on CALMTHORN, used by Tonto Team CALMTHORN |
| 2021-02-03
⋅
Twitter (@James_inthe_box)
⋅
Tiwtter thread on Nim rewrite of Bazarloader BazarNimrod |
| 2021-01-29
⋅
Twitter (@VK_intel)
⋅
Tweet on analysis of Vovalex ransomware written in DLang Vovalex |
| 2021-01-26
⋅
Twitter (@swisscom_csirt)
⋅
Tweet on Cring Ransomware groups using customized Mimikatz sample followed by CobaltStrike and dropping Cring rasomware Cobalt Strike Cring MimiKatz |
| 2021-01-19
⋅
⋅
Twitter (@jpcert_ac)
⋅
Tweet on LODEINFO ver 0.47 spotted ITW targeting Japan LODEINFO |
| 2021-01-11
⋅
Twitter (@dk_samper)
⋅
Tweet on Initial access of Avaddon Ransomware group from an IR engagement Avaddon |
| 2021-01-09
⋅
Github (f0wl)
⋅
ezuri_unpack |
| 2021-01-06
⋅
Github (SentinelLabs)
⋅
SolarWinds_Countermeasures SUNBURST |
| 2021-01-04
⋅
nao_sec blog
⋅
Royal Road! Re:Dive 8.t Dropper Chinoxy FlowCloud FunnyDream Lookback |
| 2020-12-17
⋅
Twitter (@megabeets_)
⋅
Tweet on SUNBURST malware discussing some of its evasion techniques SUNBURST |
| 2020-12-10
⋅
Guardicore
⋅
PLEASE_READ_ME: The Opportunistic Ransomware Devastating MySQL Servers |
| 2020-11-28
⋅
pat_h/to/file
⋅
Hunting Koadic Pt. 2 - JARM Fingerprinting Koadic |