Click here to download all references as Bib-File.•
| 2021-03-28
⋅
PC's Xcetra Support
⋅
SunCrypt, PowerShell obfuscation, shellcode and more yara SunCrypt |
| 2021-03-25
⋅
VMWare Carbon Black
⋅
Memory Forensics for Virtualized Hosts |
| 2021-03-18
⋅
VinCSS
⋅
[RE021] Qakbot analysis – Dangerous malware has been around for more than a decade QakBot |
| 2021-03-18
⋅
Github (lacework)
⋅
DGA and decoder scripts for n3cr0morph IRC malware N3Cr0m0rPh |
| 2021-03-16
⋅
Morphisec
⋅
Tracking HCrypt: An Active Crypter as a Service AsyncRAT LimeRAT Remcos |
| 2021-03-16
⋅
Elastic
⋅
Detecting Cobalt Strike with memory signatures Cobalt Strike |
| 2021-03-12
⋅
360 netlab
⋅
New Threat: ZHtrap botnet implements honeypot to facilitate finding more victims ZHtrap |
| 2021-03-11
⋅
IBM
⋅
Dridex Campaign Propelled by Cutwail Botnet and Poisonous PowerShell Scripts Cutwail Dridex |
| 2021-03-11
⋅
Cofense
⋅
AutoHotKey Leveraged by Metamorfo/Mekotio Banking Trojan Metamorfo |
| 2021-03-09
⋅
Morphisec
⋅
MineBridge Is on the Rise, With a Sophisticated Delivery Mechanism MINEBRIDGE |
| 2021-03-02
⋅
Atlantic Council
⋅
Countering Cyber Proliferation: Zeroing in on Access-as-a-Service |
| 2021-02-19
⋅
The Record
⋅
Cyber Attribution Is More Art Than Science. This Researcher Has a Plan to Change That |
| 2021-02-18
⋅
of0x.cc
⋅
One thousand and one ways to copy your shellcode to memory (VBA Macros) |
| 2021-02-17
⋅
Aquasec
⋅
Threat Alert: TeamTNT Pwn Campaign Against Docker and K8s Environments TeamTNT TeamTNT |
| 2021-02-15
⋅
Silent Push
⋅
More LodaRAT infrastructure targeting Bangladesh uncovered Loda |
| 2021-02-11
⋅
Morphisec
⋅
An Analysis of the Egregor Ransomware Egregor |
| 2021-02-08
⋅
Morphisec
⋅
Long Live, Osiris; Banking Trojan Targets German IP Addresses Kronos |
| 2021-02-07
⋅
Bleeping Computer
⋅
New phishing attack uses Morse code to hide malicious URLs |
| 2021-02-05
⋅
Morphisec
⋅
CinaRAT Resurfaces with New Evasive Tactics and Techniques Quasar RAT |
| 2021-01-07
⋅
AT&T
⋅
Malware using new Ezuri memory loader Cephei |