Click here to download all references as Bib-File.•
| 2020-08-05
⋅
BlackHat
⋅
FASTCashand INJX_PURE: How Threat Actors Use Public Standards for Financial Fraud FastCash |
| 2020-07-28
⋅
Medium (@vishal_thakur)
⋅
LOLSnif Malware LOLSnif |
| 2020-07-24
⋅
Medium tom_rock
⋅
Fifty Shades of Malware Strings |
| 2020-07-13
⋅
Stage 2 Security
⋅
Anchor_dns malware goes cross platform AnchorDNS |
| 2020-07-06
⋅
NTT
⋅
TrickBot variant “Anchor_DNS” communicating over DNS AnchorDNS TrickBot |
| 2020-06-22
⋅
Github (StrangerealIntel)
⋅
FTcode targets European countries FTCODE |
| 2020-06-17
⋅
Twitter (@VK_intel)
⋅
Tweet on signed Tinymet payload (V.02) used by TA505 TinyMet |
| 2020-06-17
⋅
Twitter (@VK_intel)
⋅
Tweet on signed Tinymet payload (V.02) used by TA505 TinyMet |
| 2020-06-11
⋅
Twitter (@bad_packets)
⋅
Tweet on Honda & Enel Critix(NetScaler) VPN server vulnerable to CVE-2019-19781, possibly targeted by SNAKE ransomware Snake |
| 2020-06-10
⋅
FRat Reporting, YARA, and IoCs FRat Loader FRat |
| 2020-06-10
⋅
FRat Reporting, YARA, and IoCs FRat Loader FRat |
| 2020-06-09
⋅
Lab52
⋅
Recent FK_Undead rootkit samples found in the wild |
| 2020-06-08
⋅
Stratosphere Lab
⋅
Dark Nexus: the old, the new and the ugly Dark Nexus |
| 2020-06-07
⋅
Zero2Automated Blog
⋅
Dealing with Obfuscated Macros, Statically - NanoCore Nanocore RAT |
| 2020-05-28
⋅
Twitter (@Andrew___Morris)
⋅
Tweet on Sandworm threat actor exploiting CVE-2019-10149 |
| 2020-05-25
⋅
Twitter (@JAMESWT_MHT)
⋅
Tweet on FuckUnicorn instance of HiddenTear HiddenTear |
| 2020-05-14
⋅
Leonardo
⋅
Malware Technical Insight Turla "Penquin_x64" Penquin Turla |
| 2020-05-12
⋅
Twitter (@James_inthe_box)
⋅
Tweet on Himera Loader Himera Loader |
| 2020-05-07
⋅
Red Canary
⋅
Detecting COR_PROFILER manipulation for persistence |
| 2020-05-05
⋅
Github (StrangerealIntel)
⋅
Operation Flash Cobra |