Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-12-16Twitter (@0xrb)R. Bansal
List of domain infrastructure including DGA domain used by UNC2452
SUNBURST
2020-12-15Twitter @cybercdh)Colin Hardy
Tweet on some more capabilties of SUNBURST backdoor
SUNBURST
2020-12-15Twitter @cybercdh)Colin Hardy
Tweet on CyberChef recipe to extract and decode strings from #SolarWinds malware binaries.
SUNBURST
2020-12-15Twitter (@darb0ng)Minhee Lee
Tweet on Symrise group hit by Clop Ransomware
Clop
2020-12-14IntezerTwitter (IntezerLabs)
Tweet on linux variant of Prometei botnet
Prometei
2020-12-14Twitter (@lordx64)Taha Karim
Tweet on a one liner to decrypt SUNBURST backdoor
SUNBURST
2020-12-14Twitter (@ItsReallyNick)Nick Carr
Tweet on summarizing post-compromise actvity of UNC2452
SUNBURST
2020-12-14Twitter (@KimZetter)Kim Zetter
Tweet thread on microsoft report on Solarwind supply chain attack by UNC2452
SUNBURST
2020-12-12Twitter (MalwareHunterTeam)MalwareHunterTeam
Tweet on ITG18 android implant
LittleLooter
2020-12-11PWC UKTwitter (@BitsOfBinary)
Tweet on macOS Manuscypt samples
Manuscrypt
2020-12-02Red Canarytwitter (@redcanary)
Tweet on increased #Qbot activity delivering Cobalt Strike & #Egregor ransomware
Cobalt Strike Egregor QakBot
2020-11-26Twitter (@3xp0rtblog)3xp0rt
Tweet on Xenon Stealer
Xenon Stealer
2020-11-22Twitter (@Nocturnus)Cybereason Nocturnus
Tweet on new modular stealer that steals passwords, credit cards data, cryptocurrency wallets and downloads further plugins.
2020-11-21Medium Intel-HoneyTwitter (@intel_honey)
Reversing Anubis Malware
Anubis
2020-11-19Twitter (@VK_intel)Vitali Kremez
Tweet on Trickbot Group pushing LIGHTBOT powershell script to gather information about AD Server
LightBot
2020-11-17Twitter (@VK_intel)Vitali Kremez
Tweet on a new fileless TrickBot loading method using code from MemoryModule
TrickBot
2020-11-12Twitter (@ddash_ct)ddash
Tweet on Lootwodniw
Lootwodniw
2020-11-12Twitter (@IntezerLabs)Intezer
Tweet on Agelocker
AgeLocker
2020-11-06Twitter (@3xp0rtblog)3xp0rt
Tweet on Hunter Stealer
Hunter Stealer
2020-11-05Twitter (@ffforward)TheAnalyst
Tweet on Zloader infection leads to Cobaltstrike Installation and deployment of RYUK
Cobalt Strike Ryuk Zloader