Click here to download all references as Bib-File.•
| 2024-02-07
⋅
Malwarebytes
⋅
How to tell if your toothbrush is being used in a DDoS attack |
| 2024-02-07
⋅
CrowdStrike
⋅
HijackLoader Expands Techniques to Improve Defense Evasion HijackLoader |
| 2023-10-23
⋅
SarlackLab
⋅
Advice For Catching a RedLine Stealer RedLine Stealer |
| 2023-09-28
⋅
HarfangLab
⋅
Loader Galore - TaskLoader at the start of a Pay-per-Install Infection Chain CustomerLoader Fabookie LgoogLoader SmokeLoader |
| 2023-09-18
⋅
Alpine Security
⋅
HijackLoader Targets Hotels: A Technical Analysis HijackLoader |
| 2023-09-08
⋅
Zscaler
⋅
Technical Analysis of HijackLoader HijackLoader |
| 2023-08-30
⋅
Nisos
⋅
Trickbot in Light of Trickleaks Data TrickBot |
| 2023-07-27
⋅
X (@BlackLotusLabs)
⋅
Tweet on update on AVrecon bot's migration to new infrastructure AVrecon |
| 2023-07-15
⋅
MSSP Lab
⋅
Malware source code investigation: BlackLotus - part 1 BlackLotus |
| 2023-06-13
⋅
Outpost24
⋅
ICS attack classifications: differentiating between cyberwarfare, cyberterrorism, and hacktivism UAC-0118 |
| 2023-05-29
⋅
BlackLotus stage 2 bootkit-rootkit analysis BlackLotus |
| 2023-05-03
⋅
unpac.me
⋅
UnpacMe Weekly: New Version of IcedId Loader IcedID PhotoLoader |
| 2023-04-19
⋅
Sophos
⋅
‘AuKill’ EDR killer malware abuses Process Explorer driver AuKill |
| 2023-04-11
⋅
Microsoft
⋅
Guidance for investigating attacks using CVE-2022-21894: The BlackLotus campaign BlackLotus |
| 2023-03-09
⋅
binarly
⋅
The Untold Story of the BlackLotus UEFI Bootkit BlackLotus |
| 2023-03-04
⋅
ThreatZero
⋅
KL Remota - Brazilian Malware Bank |
| 2023-03-01
⋅
ESET Research
⋅
BlackLotus UEFI bootkit: Myth confirmed BlackLotus |
| 2023-01-09
⋅
Twitter (@SethKingHi)
⋅
Tweet on HuskLoader HuskLoader |
| 2022-12-13
⋅
Sophos
⋅
Signed driver malware moves up the software trust chain KillAV |
| 2022-10-04
⋅
Sophos
⋅
Remove All The Callbacks – BlackByte Ransomware Disables EDR Via RTCore64.sys Abuse BlackByte |