Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2013-09-26MalwarebytesJoshua Cannell
@online{cannell:20130926:new:428977b, author = {Joshua Cannell}, title = {{New Solarbot Malware Debuts, Creator Publicly Advertising}}, date = {2013-09-26}, organization = {Malwarebytes}, url = {https://blog.malwarebytes.com/threat-analysis/2013/09/new-solarbot-malware-debuts-creator-publicly-advertising/}, language = {English}, urldate = {2019-12-20} } New Solarbot Malware Debuts, Creator Publicly Advertising
Solarbot
2013-08-07FireEyeIan Ahl, Tony Lee, Dennis Hanzlik
@online{ahl:20130807:breaking:aff06e9, author = {Ian Ahl and Tony Lee and Dennis Hanzlik}, title = {{Breaking Down the China Chopper Web Shell - Part I}}, date = {2013-08-07}, organization = {FireEye}, url = {https://www.fireeye.com/blog/threat-research/2013/08/breaking-down-the-china-chopper-web-shell-part-i.html}, language = {English}, urldate = {2019-12-20} } Breaking Down the China Chopper Web Shell - Part I
CHINACHOPPER
2013-08-01MalwarebytesJoshua Cannell
@online{cannell:20130801:sophos:404c6a5, author = {Joshua Cannell}, title = {{Sophos Discovers ZeroAccess Using RLO}}, date = {2013-08-01}, organization = {Malwarebytes}, url = {https://blog.malwarebytes.com/threat-analysis/2013/08/sophos-discovers-zeroaccess-using-rlo/}, language = {English}, urldate = {2019-12-20} } Sophos Discovers ZeroAccess Using RLO
ZeroAccess
2013-07-30ESET Researchwelivesecurity
@online{welivesecurity:20130730:versatile:30e5f2e, author = {welivesecurity}, title = {{Versatile and infectious: Win64/Expiro is a cross‑platform file infector}}, date = {2013-07-30}, organization = {ESET Research}, url = {https://www.welivesecurity.com/2013/07/30/versatile-and-infectious-win64expiro-is-a-cross-platform-file-infector/}, language = {English}, urldate = {2022-02-14} } Versatile and infectious: Win64/Expiro is a cross‑platform file infector
Expiro
2013-07-25MalwarebytesJoshua Cannell
@online{cannell:20130725:zeroaccess:4853854, author = {Joshua Cannell}, title = {{ZeroAccess uses Self-Debugging}}, date = {2013-07-25}, organization = {Malwarebytes}, url = {https://blog.malwarebytes.com/threat-analysis/2013/07/zeroaccess-anti-debug-uses-debugger/}, language = {English}, urldate = {2019-12-20} } ZeroAccess uses Self-Debugging
ZeroAccess
2013-06-26SymantecSymantec Security Response
@online{response:20130626:four:cd9ccb5, author = {Symantec Security Response}, title = {{Four Years of DarkSeoul Cyberattacks Against South Korea Continue on Anniversary of Korean War}}, date = {2013-06-26}, organization = {Symantec}, url = {https://web.archive.org/web/20130701021735/https://www.symantec.com/connect/blogs/four-years-darkseoul-cyberattacks-against-south-korea-continue-anniversary-korean-war}, language = {English}, urldate = {2020-04-21} } Four Years of DarkSeoul Cyberattacks Against South Korea Continue on Anniversary of Korean War
Lazarus Group
2013-06-26SymantecSecurity Response
@online{response:20130626:four:abdfea2, author = {Security Response}, title = {{Four Years of DarkSeoul Cyberattacks Against South Korea Continue on Anniversary of Korean War}}, date = {2013-06-26}, organization = {Symantec}, url = {https://www.symantec.com/connect/blogs/four-years-darkseoul-cyberattacks-against-south-korea-continue-anniversary-korean-war}, language = {English}, urldate = {2020-01-10} } Four Years of DarkSeoul Cyberattacks Against South Korea Continue on Anniversary of Korean War
Lazarus Group
2013-06-18FireEyeRong Hwa Chong
@online{chong:20130618:trojanaptseinup:be546b7, author = {Rong Hwa Chong}, title = {{Trojan.APT.Seinup Hitting ASEAN}}, date = {2013-06-18}, organization = {FireEye}, url = {https://www.fireeye.com/blog/threat-research/2013/06/trojan-apt-seinup-hitting-asean.html}, language = {English}, urldate = {2021-02-04} } Trojan.APT.Seinup Hitting ASEAN
seinup
2013-05-02ESET ResearchStephen Cobb
@online{cobb:20130502:stealthiness:6579e26, author = {Stephen Cobb}, title = {{The stealthiness of Linux/Cdorked: a clarification}}, date = {2013-05-02}, organization = {ESET Research}, url = {https://www.welivesecurity.com/2013/05/02/the-stealthiness-of-linuxcdorked-a-clarification/}, language = {English}, urldate = {2019-11-14} } The stealthiness of Linux/Cdorked: a clarification
CDorked
2013-04-01FireEyeRong Hwa Chong
@online{chong:20130401:trojanaptbanechant:3b8eea7, author = {Rong Hwa Chong}, title = {{Trojan.APT.BaneChant: In-Memory Trojan That Observes for Multiple Mouse Clicks}}, date = {2013-04-01}, organization = {FireEye}, url = {https://www.fireeye.com/blog/threat-research/2013/04/trojan-apt-banechant-in-memory-trojan-that-observes-for-multiple-mouse-clicks.html}, language = {English}, urldate = {2020-07-15} } Trojan.APT.BaneChant: In-Memory Trojan That Observes for Multiple Mouse Clicks
2013-03-13ESET ResearchAleksandr Matrosov
@online{matrosov:20130313:how:c50943e, author = {Aleksandr Matrosov}, title = {{How Theola malware uses a Chrome plugin for banking fraud}}, date = {2013-03-13}, organization = {ESET Research}, url = {https://www.welivesecurity.com/2013/03/13/how-theola-malware-uses-a-chrome-plugin-for-banking-fraud/}, language = {English}, urldate = {2019-11-14} } How Theola malware uses a Chrome plugin for banking fraud
Sinowal
2012-12-19ESET ResearchAleksandr Matrosov
@online{matrosov:20121219:win32spyranbyus:955d383, author = {Aleksandr Matrosov}, title = {{Win32/Spy.Ranbyus modifying Java code in RBS Ukraine systems}}, date = {2012-12-19}, organization = {ESET Research}, url = {https://www.welivesecurity.com/2012/12/19/win32spy-ranbyus-modifying-java-code-in-rbs/}, language = {English}, urldate = {2019-11-14} } Win32/Spy.Ranbyus modifying Java code in RBS Ukraine systems
Ranbyus
2012-11-16Information on Security BlogKeith Tyler
@online{tyler:20121116:china:d206def, author = {Keith Tyler}, title = {{China Chopper Webshell - the 4KB that Owns your Web Server}}, date = {2012-11-16}, organization = {Information on Security Blog}, url = {https://informationonsecurity.blogspot.com/2012/11/china-chopper-webshell.html}, language = {English}, urldate = {2019-10-14} } China Chopper Webshell - the 4KB that Owns your Web Server
2012-11-05MalwarebytesJérôme Segura
@online{segura:20121105:citadel:f1d7f7d, author = {Jérôme Segura}, title = {{Citadel: a cyber-criminal’s ultimate weapon?}}, date = {2012-11-05}, organization = {Malwarebytes}, url = {https://blog.malwarebytes.com/threat-analysis/2012/11/citadel-a-cyber-criminals-ultimate-weapon/}, language = {English}, urldate = {2019-12-20} } Citadel: a cyber-criminal’s ultimate weapon?
Citadel
2012-05-31CrySyS LabCrySyS Lab
@techreport{lab:20120531:skywiper:5435097, author = {CrySyS Lab}, title = {{sKyWIper (a.k.a. Flame a.k.a. Flamer): A complex malware for targeted attacks}}, date = {2012-05-31}, institution = {CrySyS Lab}, url = {https://www.crysys.hu/publications/files/skywiper.pdf}, language = {English}, urldate = {2020-01-06} } sKyWIper (a.k.a. Flame a.k.a. Flamer): A complex malware for targeted attacks
Flame
2012-04-16SANSRong Hwa Chong
@online{chong:20120416:detailed:3f191a4, author = {Rong Hwa Chong}, title = {{Detailed Analysis Of Sykipot (Smartcard Proxy Variant)}}, date = {2012-04-16}, organization = {SANS}, url = {https://www.sans.org/reading-room/whitepapers/malicious/detailed-analysis-sykipot-smartcard-proxy-variant-33919}, language = {English}, urldate = {2020-01-07} } Detailed Analysis Of Sykipot (Smartcard Proxy Variant)
Maverick Panda
2009-03-28Information Warfare MonitorInformation Warfare Monitor
@techreport{monitor:20090328:tracking:dffad13, author = {Information Warfare Monitor}, title = {{Tracking GhostNet: Investigating a Cyber Espionage Network}}, date = {2009-03-28}, institution = {Information Warfare Monitor}, url = {http://www.nartv.org/mirror/ghostnet.pdf}, language = {English}, urldate = {2020-04-23} } Tracking GhostNet: Investigating a Cyber Espionage Network
Ghost RAT GhostNet
2007-04-03USENIXKen Chiang, Levi Lloyd
@online{chiang:20070403:case:5dd68c2, author = {Ken Chiang and Levi Lloyd}, title = {{A Case Study of the Rustock Rootkit and Spam Bot}}, date = {2007-04-03}, organization = {USENIX}, url = {https://www.usenix.org/legacy/event/hotbots07/tech/full_papers/chiang/chiang_html/index.html}, language = {English}, urldate = {2019-12-17} } A Case Study of the Rustock Rootkit and Spam Bot
Rustock