Click here to download all references as Bib-File.•
| 2021-05-14
⋅
Twitter (@ConfiantIntel)
⋅
Tweet on OSX/Bundlore Loader compiled for ARM Bundlore |
| 2021-05-11
⋅
Twitter (@xuy1202)
⋅
Tweet on necro's new DGA N3Cr0m0rPh |
| 2021-05-11
⋅
Twitter (@MsftSecIntel)
⋅
Tweet on Snip3 crypter delivering AsyncRAT or AgentTesla Agent Tesla AsyncRAT |
| 2021-05-08
⋅
Twitter (@Jacob_Pimental)
⋅
Tweet on CyberChef recipe to extract Revil Ransomware configuration REvil |
| 2021-05-06
⋅
Twitter (@MrDanPerez)
⋅
Tweet on UNC302 / oro0lxy using ColdFusion BRONZE SPRING |
| 2021-05-06
⋅
Twitter (@SyscallE)
⋅
Tweet on short analysis of Nebulae Backdoor Nebulae |
| 2021-05-05
⋅
Twitter (@3xp0rtblog)
⋅
Tweet on Toxin Miner |
| 2021-05-04
⋅
Twitter (@elisalem9)
⋅
Tweet on analysis of N3tw0rm ransomware |
| 2021-05-04
⋅
Twitter (@TrendMicroRSRCH)
⋅
Tweet on N3tw0rm ransomware, that has started affecting users in Israel. Pay2Key |
| 2021-05-03
⋅
Twitter (@y_advintel)
⋅
Tween on new RaaS Galaxy Ransomware |
| 2021-05-01
⋅
whtaguy research
⋅
Guy's 30 Reverse Engineering Tips & Tricks |
| 2021-05-01
⋅
Twitter (@JAMESWT_MHT)
⋅
Tweet on linux version of DarkSide ransomware DarkSide DarkSide |
| 2021-04-30
⋅
Twitter (@3xp0rtblog)
⋅
Tweet on Zenar Miner |
| 2021-04-26
⋅
getrevue
⋅
Hunting Cobalt Strike DNS redirectors by using ZoomEye Cobalt Strike |
| 2021-04-23
⋅
Twitter (@vikas891)
⋅
Tweet on DOPPEL SPIDER using Intensive/Multiple Injected Cobalt Strike Beacons with varied polling intervals Cobalt Strike DoppelPaymer |
| 2021-04-22
⋅
Twitter (@AltShiftPrtScn)
⋅
Twwet On TTPs seen in IR used by DOPPEL SPIDER Cobalt Strike DoppelPaymer |
| 2021-04-22
⋅
Twitter (@ET_Labs)
⋅
Tweet on Lunar Builder exfiltrating data via Discord webhook |
| 2021-04-22
⋅
Twitter (@AffableKraut)
⋅
A thread on possibly new magecart skimmer magecart |
| 2021-04-21
⋅
Twitter (@alberto__segura)
⋅
Tweet on FluBot Version 4.0 FluBot |
| 2021-04-20
⋅
Twitter (@iiyonite)
⋅
Tweet on Uniti 61419 Tick |