Click here to download all references as Bib-File.•
| 2021-02-05
⋅
Twitter (@8th_grey_owl)
⋅
Tweet on CALMTHORN, used by Tonto Team CALMTHORN |
| 2021-02-03
⋅
Twitter (@James_inthe_box)
⋅
Tiwtter thread on Nim rewrite of Bazarloader BazarNimrod |
| 2021-01-29
⋅
Twitter (@VK_intel)
⋅
Tweet on analysis of Vovalex ransomware written in DLang Vovalex |
| 2021-01-26
⋅
Twitter (@swisscom_csirt)
⋅
Tweet on Cring Ransomware groups using customized Mimikatz sample followed by CobaltStrike and dropping Cring rasomware Cobalt Strike Cring MimiKatz |
| 2021-01-19
⋅
⋅
Twitter (@jpcert_ac)
⋅
Tweet on LODEINFO ver 0.47 spotted ITW targeting Japan LODEINFO |
| 2021-01-11
⋅
Twitter (@dk_samper)
⋅
Tweet on Initial access of Avaddon Ransomware group from an IR engagement Avaddon |
| 2021-01-09
⋅
Github (f0wl)
⋅
ezuri_unpack |
| 2021-01-06
⋅
Github (SentinelLabs)
⋅
SolarWinds_Countermeasures SUNBURST |
| 2021-01-04
⋅
nao_sec blog
⋅
Royal Road! Re:Dive 8.t Dropper Chinoxy FlowCloud FunnyDream Lookback |
| 2020-12-17
⋅
Twitter (@megabeets_)
⋅
Tweet on SUNBURST malware discussing some of its evasion techniques SUNBURST |
| 2020-12-10
⋅
Guardicore
⋅
PLEASE_READ_ME: The Opportunistic Ransomware Devastating MySQL Servers |
| 2020-11-28
⋅
pat_h/to/file
⋅
Hunting Koadic Pt. 2 - JARM Fingerprinting Koadic |
| 2020-11-21
⋅
Medium Intel-Honey
⋅
Reversing Anubis Malware Anubis |
| 2020-11-19
⋅
Twitter (@VK_intel)
⋅
Tweet on Trickbot Group pushing LIGHTBOT powershell script to gather information about AD Server LightBot |
| 2020-11-17
⋅
Twitter (@VK_intel)
⋅
Tweet on a new fileless TrickBot loading method using code from MemoryModule TrickBot |
| 2020-11-16
⋅
JPCERT/CC
⋅
ELF_PLEAD - Linux Malware Used by BlackTech PLEAD |
| 2020-11-13
⋅
Youtube (The Standoff)
⋅
FF_202_Eng - From old Higaisa samples to new Winnti backdoors: The story of one research CROSSWALK Unidentified 076 (Higaisa LNK to Shellcode) |
| 2020-11-12
⋅
Twitter (@ddash_ct)
⋅
Tweet on Lootwodniw Lootwodniw |
| 2020-10-03
⋅
Medium vishal_thakur
⋅
Grinju Downloader: Anti-analysis (on steroids) | Part 2 Grinju Downloader |
| 2020-09-22
⋅
Medium (@vishal_thakur)
⋅
Grinju Downloader Grinju Downloader |