Click here to download all references as Bib-File.•
| 2020-12-24
⋅
Twitter (@TheEnergyStory)
⋅
Tweet on TEARDROP sample TEARDROP |
| 2020-12-20
⋅
Twitter (@TychoTithonus)
⋅
SolarWinds/SunBurst FNV-1a-XOR hashes found in analysis SUNBURST |
| 2020-12-19
⋅
Twitter (@GossiTheDog)
⋅
A twitter thread on Azure sentinel hunting queries for detecting UNC2452 activity |
| 2020-12-17
⋅
Twitter (@megabeets_)
⋅
Tweet on SUNBURST malware discussing some of its evasion techniques SUNBURST |
| 2020-12-16
⋅
Twitter @cybercdh)
⋅
Tweet on 3 key actions SUNBURST performs as soon as it's invoked SUNBURST |
| 2020-12-16
⋅
Twitter (@FireEye)
⋅
Tweet on SUNBURST from FireEye detailing some additional information SUNBURST |
| 2020-12-16
⋅
Twitter (@0xrb)
⋅
List of domain infrastructure including DGA domain used by UNC2452 SUNBURST |
| 2020-12-15
⋅
Twitter @cybercdh)
⋅
Tweet on some more capabilties of SUNBURST backdoor SUNBURST |
| 2020-12-15
⋅
Twitter @cybercdh)
⋅
Tweet on CyberChef recipe to extract and decode strings from #SolarWinds malware binaries. SUNBURST |
| 2020-12-15
⋅
Twitter (@darb0ng)
⋅
Tweet on Symrise group hit by Clop Ransomware Clop |
| 2020-12-14
⋅
Intezer
⋅
Tweet on linux variant of Prometei botnet Prometei |
| 2020-12-14
⋅
Twitter (@lordx64)
⋅
Tweet on a one liner to decrypt SUNBURST backdoor SUNBURST |
| 2020-12-14
⋅
Twitter (@ItsReallyNick)
⋅
Tweet on summarizing post-compromise actvity of UNC2452 SUNBURST |
| 2020-12-14
⋅
Twitter (@KimZetter)
⋅
Tweet thread on microsoft report on Solarwind supply chain attack by UNC2452 SUNBURST |
| 2020-12-12
⋅
Twitter (MalwareHunterTeam)
⋅
Tweet on ITG18 android implant LittleLooter |
| 2020-12-11
⋅
PWC UK
⋅
Tweet on macOS Manuscypt samples Manuscrypt |
| 2020-12-02
⋅
Red Canary
⋅
Tweet on increased #Qbot activity delivering Cobalt Strike & #Egregor ransomware Cobalt Strike Egregor QakBot |
| 2020-11-26
⋅
Twitter (@3xp0rtblog)
⋅
Tweet on Xenon Stealer Xenon Stealer |
| 2020-11-22
⋅
Twitter (@Nocturnus)
⋅
Tweet on new modular stealer that steals passwords, credit cards data, cryptocurrency wallets and downloads further plugins. |
| 2020-11-21
⋅
Medium Intel-Honey
⋅
Reversing Anubis Malware Anubis |