Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-11-16Twitter (@kienbigmummy)m4n0w4r
Tweet on short analysis of QakBot
QakBot
2021-11-14Twitter (@f0wlsec)Marius Genheimer
A static config extractor for the main component of DanaBot
DanaBot
2021-11-12Twitter (@3xp0rtblog)3xp0rt
Tweets on DarkLoader
DarkLoader
2021-11-12Twitter (@Arkbird_SOLG)Arkbird
Tweets on Void Balaur using QuantLoader and ZStealer
QuantLoader ZStealer
2021-11-11Twitter (@aRtAGGI)Michael Raggi
Tweet on APT31 using compromised PakEdge Rk1&RE2 router IPs as exit nodes in reconnaissance phishing campaigns
2021-11-10Twitter (@ESETresearch)ESET Research
Tweet on a discovery of a trojanized IDA Pro installer, distributed by the LABYRINTH CHOLLIMA group.
2021-11-10Twitter (@billyleonard)Billy Leonard, Google Threat Analysis Group
Tweet on Rekoobe (used by APT31), being a fork of open source tool called Tiny SHell, used by different actor since at least 2012
Rekoobe
2021-11-09Twitter (@AvastThreatLabs)
Tweet by Avast on a new Android Banker they call MasterFred
MasterFred
2021-11-05Twitter (@Unit42_Intel)Unit 42
Tweet on TA551 (Shathak) BazarLoader infection with CobaltStrike and DarkVNC drops
BazarBackdoor Cobalt Strike
2021-11-05Twitter (@inversecos)inversecos
TTPs used by Pysa Ransonmware group
Mespinoza MimiKatz
2021-11-03Twitter (@Corvid_Cyber)CORVID
Tweet on a unique Qbot debugger dropped by an actor after compromise
QakBot
2021-11-02Twitter (@malwrhunterteam)malwrhunterteam
Tweet on linux version of Hive Ransomware group's command to shut down ESXI VMs
Hive
2021-10-29Twitter (@ESETresearch)ESET Research
Tweet on FreeBSD and LInux version of Hive ransomware
Hive
2021-10-28Twitter (@BrettCallow)Brett Callow
Tweet on suspected actor behind Payorgrief ransomware
DoppelDridex DoppelPaymer
2021-10-27Twitter (@darienhuss)Darien Huss
Tweet on FinickyFrogfish/Wslink malware used by TA444
Wslink
2021-10-26IntezerTwitter (IntezerLabs)
Tweet on Linux version of REvil ransomware
REvil
2021-10-22Twitter (@GelosSnake)Omri Segev Moyal
Tweet on List of wallets used by Darkside/Blackmatter Operator to split out the money
BlackMatter DarkSide BlackMatter DarkSide
2021-10-21Twitter (@MsftSecIntel)Microsoft Security Intelligence
Tweet on new variant of mac malware UpdateAgent/WizardUpdate
Vigram
2021-10-20Twitter (@lampnout)Lampros Noutsos
Persistence and Privilege Escalation on Windows via Print Processors
CCleaner Backdoor
2021-10-19Twitter (@campuscodi)Catalin Cimpanu
Tweet on Moses Staff
MosesStaff