Click here to download all references as Bib-File.•
| 2021-01-04
⋅
Twitter (@TheEnergyStory)
⋅
Some small detail on compiler used for TEARDROP TEARDROP |
| 2021-01-02
⋅
Twitter (MalwareHunterTeam)
⋅
Tweet on Knot Ransomware Knot |
| 2020-12-30
⋅
Twitter (@3xp0rtblog)
⋅
Tweet on Alfonso Stealer Alfonso Stealer |
| 2020-12-26
⋅
Twitter (@MalwareRE)
⋅
Tweet on active exploitation of 0day vulnerability in the SolarWinds Orion SUPERNOVA |
| 2020-12-24
⋅
Twitter (@TheEnergyStory)
⋅
Tweet on TEARDROP sample TEARDROP |
| 2020-12-20
⋅
Twitter (@TychoTithonus)
⋅
SolarWinds/SunBurst FNV-1a-XOR hashes found in analysis SUNBURST |
| 2020-12-19
⋅
Twitter (@GossiTheDog)
⋅
A twitter thread on Azure sentinel hunting queries for detecting UNC2452 activity |
| 2020-12-17
⋅
Twitter (@megabeets_)
⋅
Tweet on SUNBURST malware discussing some of its evasion techniques SUNBURST |
| 2020-12-16
⋅
Twitter @cybercdh)
⋅
Tweet on 3 key actions SUNBURST performs as soon as it's invoked SUNBURST |
| 2020-12-16
⋅
Twitter (@FireEye)
⋅
Tweet on SUNBURST from FireEye detailing some additional information SUNBURST |
| 2020-12-16
⋅
Twitter (@0xrb)
⋅
List of domain infrastructure including DGA domain used by UNC2452 SUNBURST |
| 2020-12-15
⋅
Twitter @cybercdh)
⋅
Tweet on some more capabilties of SUNBURST backdoor SUNBURST |
| 2020-12-15
⋅
Twitter @cybercdh)
⋅
Tweet on CyberChef recipe to extract and decode strings from #SolarWinds malware binaries. SUNBURST |
| 2020-12-15
⋅
Twitter (@darb0ng)
⋅
Tweet on Symrise group hit by Clop Ransomware Clop |
| 2020-12-14
⋅
Intezer
⋅
Tweet on linux variant of Prometei botnet Prometei |
| 2020-12-14
⋅
Twitter (@lordx64)
⋅
Tweet on a one liner to decrypt SUNBURST backdoor SUNBURST |
| 2020-12-14
⋅
Twitter (@ItsReallyNick)
⋅
Tweet on summarizing post-compromise actvity of UNC2452 SUNBURST |
| 2020-12-14
⋅
Twitter (@KimZetter)
⋅
Tweet thread on microsoft report on Solarwind supply chain attack by UNC2452 SUNBURST |
| 2020-12-12
⋅
Twitter (MalwareHunterTeam)
⋅
Tweet on ITG18 android implant LittleLooter |
| 2020-12-11
⋅
PWC UK
⋅
Tweet on macOS Manuscypt samples Manuscrypt |