Click here to download all references as Bib-File.•
| 2025-02-11
⋅
Github (SecurityBlueTeam)
⋅
Smartloader Wireshark plugin SmartLoader |
| 2025-02-08
⋅
Github (@Jenderal92)
⋅
Github Repository for Shin Webshell php.shin_webshell |
| 2025-01-23
⋅
Github (PaloAltoNetworks)
⋅
Cluster of Infrastructure likely used by Affiliate of Dark Scorpius (Black Basta) ReedBed |
| 2025-01-19
⋅
cocomelonc
⋅
Malware development trick 44: Stealing data via legit GitHub API. Simple C example. OceanLotus BitRAT RecordBreaker |
| 2024-12-06
⋅
Github (VenzoV)
⋅
Shellcode Loader Delivering XWorm XWorm |
| 2024-10-17
⋅
Github (ssrdio)
⋅
Analysis of BeaverTail & InvisibleFerret activity BeaverTail InvisibleFerret |
| 2024-10-03
⋅
GitHub (dstepanic)
⋅
Getting Cozy with Milk and WARMCOOKIES WarmCookie |
| 2024-09-09
⋅
Github (itaymigdal)
⋅
Poshito - New Telegram C2 |
| 2024-08-22
⋅
Github (X-ZIGZAG)
⋅
Github Repository for X-ZIGZAG X-ZIGZAG |
| 2024-07-14
⋅
Github (Hildaboo)
⋅
WannaCry Server Emulator WannaCryptor |
| 2024-06-25
⋅
Hunt.io
⋅
Good Game, Gone Bad: Xeno RAT Spread Via .gg Domains and GitHub XenoRAT |
| 2024-06-13
⋅
IT Security Guru
⋅
Guest Blog: Ox Security on learning from the Recent GitHub Extortion Campaigns Gitloker |
| 2024-06-13
⋅
Github (LambdaMamba)
⋅
Implementation of C2 decryption PrivateLoader |
| 2024-06-13
⋅
Github (LambdaMamba)
⋅
Implementation of a Config Decryptor for Amadey Amadey |
| 2024-06-06
⋅
Bleeping Computer
⋅
New Gitloker attacks wipe GitHub repos in extortion scheme Gitloker |
| 2024-05-23
⋅
Github (x-junior)
⋅
String Decryptor for WarmCookie WarmCookie |
| 2024-05-23
⋅
Github (x-junior)
⋅
IDA Script for WarmCookie WarmCookie |
| 2024-05-19
⋅
Github (Aegrah)
⋅
PANIX - Persistence Against *NIX PANIX |
| 2024-05-05
⋅
Github (VenzoV)
⋅
Latrodectus "littlehw" Latrodectus |
| 2024-04-12
⋅
Github (kevoreilly)
⋅
DoomedLoader YARA rule SquidLoader |