Click here to download all references as Bib-File.•
2024-01-06
⋅
kienmanowar Blog
⋅
[QuickNote] Technical Analysis of recent Pikabot Core Module Pikabot |
2023-09-11
⋅
Github (m4now4r)
⋅
Unveiling Qakbot Exploring one of the Most Active Threat Actors QakBot |
2023-07-06
⋅
kienmanowar Blog
⋅
[QuickNote] Examining Formbook Campaign via Phishing Emails Formbook |
2023-05-22
⋅
kienmanowar Blog
⋅
[Case study] Decrypt strings using Dumpulator |
2023-04-08
⋅
kienmanowar Blog
⋅
[QuickNote] Uncovering Suspected Malware Distributed By Individuals from Vietnam AsyncRAT DCRat WorldWind |
2023-03-25
⋅
kienmanowar Blog
⋅
[QuickNote] Decrypting the C2 configuration of Warzone RAT Ave Maria |
2023-01-09
⋅
kienmanowar Blog
⋅
[QuickNote] Another nice PlugX sample PlugX |
2022-12-27
⋅
kienmanowar Blog
⋅
Diving into a PlugX sample of Mustang Panda group PlugX |
2022-12-19
⋅
kienmanowar Blog
⋅
[Z2A]Bimonthly malware challege – Emotet (Back From the Dead) Emotet |
2022-12-17
⋅
kienmanowar Blog
⋅
[QuickNote] VidarStealer Analysis Vidar |
2022-09-09
⋅
Github (m4now4r)
⋅
“Mustang Panda” – Enemy at the gate PlugX |
2022-06-04
⋅
kienmanowar Blog
⋅
[QuickNote] CobaltStrike SMB Beacon Analysis Cobalt Strike |
2022-05-20
⋅
VinCSS
⋅
[RE027] China-based APT Mustang Panda might have still continued their attack activities against organizations in Vietnam PlugX |
2022-04-25
⋅
VinCSS
⋅
[RE026] A Deep Dive into Zloader - the Silent Night Zloader |
2022-03-21
⋅
VinCSS
⋅
[QuickNote] Analysis of Pandora ransomware Pandora |
2022-02-24
⋅
kienmanowar Blog
⋅
[QuickNote] Techniques for decrypting BazarLoader strings BazarBackdoor |
2022-01-26
⋅
VinCSS
⋅
[QuickNote] Analysis of malware suspected to be an APT attack targeting Vietnam 5.t Downloader |
2022-01-23
⋅
kienmanowar Blog
⋅
[QuickNote] Emotet epoch4 & epoch5 tactics Emotet |
2021-11-16
⋅
Twitter (@kienbigmummy)
⋅
Tweet on short analysis of QakBot QakBot |
2021-10-27
⋅
VinCSS
⋅
[RE025] TrickBot ... many tricks TrickBot |