Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2017-06Trend MicroLenart Bermejo, Razor Huang, CH Lei
@techreport{bermejo:201706:following:61e6dae, author = {Lenart Bermejo and Razor Huang and CH Lei}, title = {{Following the Trail of BlackTech’s Cyber Espionage Campaigns}}, date = {2017-06}, institution = {Trend Micro}, url = {https://documents.trendmicro.com/assets/appendix-following-the-trail-of-blacktechs-cyber-espionage-campaigns.pdf}, language = {English}, urldate = {2020-01-07} } Following the Trail of BlackTech’s Cyber Espionage Campaigns
PLEAD
2017-05-09VMWare Carbon BlackJared Myers
@online{myers:20170509:carbon:63860ae, author = {Jared Myers}, title = {{Carbon Black Threat Research Dissects Red Leaves Malware, Which Leverages DLL Side Loading}}, date = {2017-05-09}, organization = {VMWare Carbon Black}, url = {https://www.carbonblack.com/2017/05/09/carbon-black-threat-research-dissects-red-leaves-malware-leverages-dll-side-loading/}, language = {English}, urldate = {2020-03-11} } Carbon Black Threat Research Dissects Red Leaves Malware, Which Leverages DLL Side Loading
RedLeaves
2016-10-27Trend MicroJoey Chen, MingYen Hsieh
@online{chen:20161027:blackgear:00f52d4, author = {Joey Chen and MingYen Hsieh}, title = {{BLACKGEAR Espionage Campaign Evolves, Adds Japan To Target List}}, date = {2016-10-27}, organization = {Trend Micro}, url = {https://blog.trendmicro.com/trendlabs-security-intelligence/blackgear-espionage-campaign-evolves-adds-japan-target-list/}, language = {English}, urldate = {2019-12-18} } BLACKGEAR Espionage Campaign Evolves, Adds Japan To Target List
Blackgear
2016-08Black HatClaudio Guarnieri, Collin Anderson
@techreport{guarnieri:201608:iran:d15568e, author = {Claudio Guarnieri and Collin Anderson}, title = {{Iran and the Soft Warfor Internet Dominance}}, date = {2016-08}, institution = {Black Hat}, url = {https://www.blackhat.com/docs/us-16/materials/us-16-Guarnieri-Iran-And-The-Soft-War-For-Internet-Dominance-wp.pdf}, language = {English}, urldate = {2019-11-26} } Iran and the Soft Warfor Internet Dominance
Infy Sima
2016-05Check PointStanislav Skuratovich
@techreport{skuratovich:201605:looking:0c23f31, author = {Stanislav Skuratovich}, title = {{Looking into Teslacrypt}}, date = {2016-05}, institution = {Check Point}, url = {https://blog.checkpoint.com/wp-content/uploads/2016/05/Tesla-crypt-whitepaper_V3.pdf}, language = {English}, urldate = {2019-12-06} } Looking into Teslacrypt
TeslaCrypt
2016-04-19EndgameMark Mager
@online{mager:20160419:your:df8bb48, author = {Mark Mager}, title = {{Your Package Has Been Successfully Encrypted: TeslaCrypt 4.1A and the Malware Attack Chain}}, date = {2016-04-19}, organization = {Endgame}, url = {https://www.endgame.com/blog/technical-blog/your-package-has-been-successfully-encrypted-teslacrypt-41a-and-malware-attack}, language = {English}, urldate = {2020-01-13} } Your Package Has Been Successfully Encrypted: TeslaCrypt 4.1A and the Malware Attack Chain
TeslaCrypt
2016-03-18MalwarebytesMalwarebytes Labs
@online{labs:20160318:teslacrypt:5c7daff, author = {Malwarebytes Labs}, title = {{Teslacrypt Spam Campaign: “Unpaid Issue…”}}, date = {2016-03-18}, organization = {Malwarebytes}, url = {https://blog.malwarebytes.com/threat-analysis/2016/03/teslacrypt-spam-campaign-unpaid-issue/}, language = {English}, urldate = {2019-12-20} } Teslacrypt Spam Campaign: “Unpaid Issue…”
TeslaCrypt
2016-01-28Kaspersky LabsGReAT
@online{great:20160128:blackenergy:3c2a914, author = {GReAT}, title = {{BlackEnergy APT Attacks in Ukraine employ spearphishing with Word documents}}, date = {2016-01-28}, organization = {Kaspersky Labs}, url = {https://securelist.com/blackenergy-apt-attacks-in-ukraine-employ-spearphishing-with-word-documents/73440/}, language = {English}, urldate = {2019-12-20} } BlackEnergy APT Attacks in Ukraine employ spearphishing with Word documents
BlackEnergy
2016-01-18ProofpointProofpoint Staff
@online{staff:20160118:updated:c96de1d, author = {Proofpoint Staff}, title = {{Updated Blackmoon banking Trojan stays focused on South Korean banking customers}}, date = {2016-01-18}, organization = {Proofpoint}, url = {https://www.proofpoint.com/us/threat-insight/post/Updated-Blackmoon-Banking-Trojan}, language = {English}, urldate = {2019-12-20} } Updated Blackmoon banking Trojan stays focused on South Korean banking customers
KrBanker
2015-12-16ESET ResearchJosep Albors
@online{albors:20151216:nemucod:b1c1305, author = {Josep Albors}, title = {{Nemucod malware spreads ransomware Teslacrypt around the world}}, date = {2015-12-16}, organization = {ESET Research}, url = {https://www.welivesecurity.com/2015/12/16/nemucod-malware-spreads-ransomware-teslacrypt-around-world/}, language = {English}, urldate = {2019-11-14} } Nemucod malware spreads ransomware Teslacrypt around the world
TeslaCrypt
2015-12-01Trend MicroJay Yaneza, Erika Mendoza
@online{yaneza:20151201:operation:718c901, author = {Jay Yaneza and Erika Mendoza}, title = {{Operation Black Atlas Endangers In-Store Card Payments and SMBs Worldwide; Switches between BlackPOS and Other Tools}}, date = {2015-12-01}, organization = {Trend Micro}, url = {https://blog.trendmicro.com/trendlabs-security-intelligence/operation-black-atlas-endangers-in-store-card-payments-and-smbs-worldwide-switches-between-blackpos-and-other-tools/}, language = {English}, urldate = {2020-03-19} } Operation Black Atlas Endangers In-Store Card Payments and SMBs Worldwide; Switches between BlackPOS and Other Tools
Alina POS BlackPOS Kronos NewPosThings
2015-10-09Palo Alto Networks Unit 42Josh Grunzweig
@online{grunzweig:20151009:latest:c328965, author = {Josh Grunzweig}, title = {{Latest TeslaCrypt Ransomware Borrows Code From Carberp Trojan}}, date = {2015-10-09}, organization = {Palo Alto Networks Unit 42}, url = {https://researchcenter.paloaltonetworks.com/2015/10/latest-teslacrypt-ransomware-borrows-code-from-carberp-trojan/}, language = {English}, urldate = {2019-12-20} } Latest TeslaCrypt Ransomware Borrows Code From Carberp Trojan
TeslaCrypt
2015-10-08CylanceBrian Wallace
@online{wallace:20151008:study:c8ba2d5, author = {Brian Wallace}, title = {{A Study in Bots: DiamondFox}}, date = {2015-10-08}, organization = {Cylance}, url = {https://blog.cylance.com/a-study-in-bots-diamondfox}, language = {English}, urldate = {2020-01-08} } A Study in Bots: DiamondFox
DiamondFox
2015-09-11Raytheon Blackbird TechnologiesRaytheon Blackbird Technologies
@techreport{technologies:20150911:20150911280csit15085:0970ce5, author = {Raytheon Blackbird Technologies}, title = {{20150911-280-CSIT-15085 NfLog}}, date = {2015-09-11}, institution = {Raytheon Blackbird Technologies}, url = {https://wikileaks.org/vault7/document/2015-09-20150911-280-CSIT-15085-NfLog/2015-09-20150911-280-CSIT-15085-NfLog.pdf}, language = {English}, urldate = {2020-02-02} } 20150911-280-CSIT-15085 NfLog
IsSpace
2015-08-24DarkMattersBev Robb
@online{robb:20150824:sphinx:314a7b9, author = {Bev Robb}, title = {{Sphinx: New Zeus Variant for Sale on the Black Market}}, date = {2015-08-24}, organization = {DarkMatters}, url = {https://web.archive.org/web/20160130165709/http://darkmatters.norsecorp.com/2015/08/24/sphinx-new-zeus-variant-for-sale-on-the-black-market/}, language = {English}, urldate = {2020-01-13} } Sphinx: New Zeus Variant for Sale on the Black Market
Zeus Sphinx
2015-08-14Raytheon Blackbird TechnologiesRaytheon Blackbird Technologies
@techreport{technologies:20150814:stalker:58aaafe, author = {Raytheon Blackbird Technologies}, title = {{Stalker Panda}}, date = {2015-08-14}, institution = {Raytheon Blackbird Technologies}, url = {https://wikileaks.org/vault7/document/2015-08-20150814-256-CSIR-15005-Stalker-Panda/2015-08-20150814-256-CSIR-15005-Stalker-Panda.pdf}, language = {English}, urldate = {2020-01-10} } Stalker Panda
Tick
2015-08-06SymantecJon DiMaggio
@online{dimaggio:20150806:black:b0fbb35, author = {Jon DiMaggio}, title = {{The Black Vine cyberespionage group}}, date = {2015-08-06}, organization = {Symantec}, url = {https://docs.broadcom.com/doc/the-black-vine-cyberespionage-group}, language = {English}, urldate = {2022-04-25} } The Black Vine cyberespionage group
Sakula RAT
2015-08-06SymantecJon DiMaggio
@techreport{dimaggio:20150806:black:af5cf27, author = {Jon DiMaggio}, title = {{The Black Vine cyberespionage group}}, date = {2015-08-06}, institution = {Symantec}, url = {https://www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/the-black-vine-cyberespionage-group.pdf}, language = {English}, urldate = {2020-01-10} } The Black Vine cyberespionage group
2015-08-05Black HatMichael Sandee, Tillmann Werner, Elliott Peterson
@techreport{sandee:20150805:gameover:fa47096, author = {Michael Sandee and Tillmann Werner and Elliott Peterson}, title = {{Gameover Zeus – Bad Guys and Backends}}, date = {2015-08-05}, institution = {Black Hat}, url = {https://www.blackhat.com/docs/us-15/materials/us-15-Peterson-GameOver-Zeus-Badguys-And-Backends.pdf}, language = {English}, urldate = {2020-01-06} } Gameover Zeus – Bad Guys and Backends
Gameover P2P
2015-07-14Kaspersky LabsFedor Sinitsyn
@online{sinitsyn:20150714:teslacrypt:9ad5fb1, author = {Fedor Sinitsyn}, title = {{TeslaCrypt 2.0 disguised as CryptoWall}}, date = {2015-07-14}, organization = {Kaspersky Labs}, url = {https://securelist.com/teslacrypt-2-0-disguised-as-cryptowall/71371/}, language = {English}, urldate = {2019-12-20} } TeslaCrypt 2.0 disguised as CryptoWall
TeslaCrypt