Click here to download all references as Bib-File.•
| 2020-09-11
⋅
Twitter (@Arkbird_SOLG)
⋅
Tweet on discovery of a sample Turla SilentMoon |
| 2020-09-03
⋅
Twitter (@Arkbird_SOLG)
⋅
Tweet on development in more_eggs More_eggs |
| 2020-08-17
⋅
Twitter (@Arkbird_SOLG)
⋅
Short twitter thread with analysis on Loup ATM malware Loup |
| 2020-08-15
⋅
Twitter (@Int2e_)
⋅
Tweet on DoubleFantasy DoubleFantasy |
| 2020-08-14
⋅
Twitter (@VK_intel)
⋅
Tweet on Zloader infection leading to Cobaltstrike Installation Cobalt Strike Zloader |
| 2020-08-14
⋅
Twitter (@James_inthe_box)
⋅
Tweet on Echelon Stealer |
| 2020-08-05
⋅
BlackHat
⋅
FASTCashand INJX_PURE: How Threat Actors Use Public Standards for Financial Fraud FastCash |
| 2020-07-28
⋅
Medium (@vishal_thakur)
⋅
LOLSnif Malware LOLSnif |
| 2020-07-24
⋅
Medium tom_rock
⋅
Fifty Shades of Malware Strings |
| 2020-07-13
⋅
Stage 2 Security
⋅
Anchor_dns malware goes cross platform AnchorDNS |
| 2020-07-06
⋅
NTT
⋅
TrickBot variant “Anchor_DNS” communicating over DNS AnchorDNS TrickBot |
| 2020-06-22
⋅
Github (StrangerealIntel)
⋅
FTcode targets European countries FTCODE |
| 2020-06-17
⋅
Twitter (@VK_intel)
⋅
Tweet on signed Tinymet payload (V.02) used by TA505 TinyMet |
| 2020-06-11
⋅
Twitter (@bad_packets)
⋅
Tweet on Honda & Enel Critix(NetScaler) VPN server vulnerable to CVE-2019-19781, possibly targeted by SNAKE ransomware Snake |
| 2020-06-10
⋅
FRat Reporting, YARA, and IoCs FRat Loader FRat |
| 2020-06-09
⋅
Lab52
⋅
Recent FK_Undead rootkit samples found in the wild |
| 2020-06-08
⋅
Stratosphere Lab
⋅
Dark Nexus: the old, the new and the ugly Dark Nexus |
| 2020-06-07
⋅
Zero2Automated Blog
⋅
Dealing with Obfuscated Macros, Statically - NanoCore Nanocore RAT |
| 2020-05-28
⋅
Twitter (@Andrew___Morris)
⋅
Tweet on Sandworm threat actor exploiting CVE-2019-10149 |
| 2020-05-25
⋅
Twitter (@JAMESWT_MHT)
⋅
Tweet on FuckUnicorn instance of HiddenTear HiddenTear |