Malpedia Library

2021-03-10 ⋅ DomainTools ⋅ Joe Slowik
Examining Exchange Exploitation and its Lessons for Defenders
CHINACHOPPER

2021-03-03 ⋅ DomainTools ⋅ Joe Slowik
Centreon to Exim and Back: On the Trail of Sandworm
Exaramel PAS

2021-02-25 ⋅ DomainTools ⋅ Joe Slowik
The Continuous Conundrum of Cloud Atlas

2021-02-11 ⋅ DomainTools ⋅ Joe Slowik
Visibility, Monitoring, and Critical Infrastructure Security
Industroyer Stuxnet Triton

2021-02-09 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Water, Water Everywhere – But Nary a Hacker to Blame

2021-01-22 ⋅ DomainTools ⋅ Joe Slowik
Change in Perspective on the Utility of SUNBURST-related Network Indicators
SUNBURST

2021-01-14 ⋅ DomainTools ⋅ Joe Slowik
The Devil’s in the Details: SUNBURST Attribution
SUNBURST

2021-01-06 ⋅ DomainTools ⋅ Joe Slowik
Holiday Bazar: Tracking a TrickBot-Related Ransomware Incident
BazarBackdoor TrickBot

2021-01-01 ⋅ DomainTools ⋅ Joe Slowik
Conceptualizing a Continuum of Cyber Threat Attribution
CHINACHOPPER SUNBURST

2020-12-23 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Mindmap on Russia-linked threat groups

2020-12-18 ⋅ DomainTools ⋅ Joe Slowik
Continuous Eruption: Further Analysis of the SolarWinds Supply Chain Incident
SUNBURST

2020-12-14 ⋅ DomainTools ⋅ Joe Slowik
Unraveling Network Infrastructure Linked to the SolarWinds Hack
SUNBURST

2020-12-10 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Terrorism or Information Operation?

2020-12-08 ⋅ DomainTools ⋅ Joe Slowik
Identifying Critical Infrastructure Targeting through Network Creation

2020-12-02 ⋅ DomainTools ⋅ Joe Slowik
Identifying Network Infrastructure Related to a World Health Organization Spoofing Campaign
Azorult Glupteba

2020-11-20 ⋅ DomainTools ⋅ Black Lotus Labs, Joe Slowik, Lumen
Current Events to Widespread Campaigns: Pivoting from Samples to Identify Activity

2020-11-18 ⋅ DomainTools ⋅ Joe Slowik
Analyzing Network Infrastructure as Composite Objects
Ryuk

2020-11-11 ⋅ DomainTools ⋅ Joe Slowik
Extrapolating Adversary Intent Through Infrastructure

2020-11-04 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
The Enigmatic Energetic Bear
EternalPetya Havex RAT

2020-09-23 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Understanding Uncertainty while Undermining Democracy

2020-06-18 ⋅ Dragos ⋅ Joe Slowik
EKANS Ransomware Misconceptions and Misunderstandings
Snake

2020-05-28 ⋅ Stranded on Pylos Blog ⋅ Joe Slowik
Silos of Excellence

2020-03-01 ⋅ Dragos ⋅ Joe Slowik
Spyware Stealer Locker Wiper Locker Goga Revisited
LockerGoga

2020-01-01 ⋅ Dragos ⋅ Joe Slowik
Threat Intelligence and the Limits of Malware Analysis
Exaramel Exaramel Industroyer Lookback NjRAT PlugX