Click here to download all references as Bib-File.•
| 2022-06-21
⋅
Malwarebytes Labs
⋅
Russia’s APT28 uses fear of nuclear war to spread Follina docs in Ukraine |
| 2022-06-20
⋅
Medium (Cryptax)
⋅
Tracking Android/Joker payloads with Medusa, static analysis (and patience) Joker |
| 2022-06-20
⋅
⋅
Cert-UA
⋅
APT28 cyberattack using CredoMap malware (CERT-UA#4843) CredoMap |
| 2022-06-20
⋅
⋅
Cert-UA
⋅
UAC-0098 group cyberattack on critical infrastructure of Ukraine (CERT-UA#4842) Cobalt Strike |
| 2022-06-20
⋅
⋅
Infinitum IT
⋅
Charming Kitten (APT35) LaZagne DownPaper MimiKatz pupy |
| 2022-06-19
⋅
OALabs
⋅
Matanbuchus Triage Notes Matanbuchus |
| 2022-06-19
⋅
CyberInt
⋅
BlackGuard Stealer Targets the Gaming Community BlackGuard |
| 2022-06-18
⋅
R136a1
⋅
Using dotnetfile to get a Sunburst timeline for intelligence gathering SUNBURST |
| 2022-06-17
⋅
Github (0xchrollo)
⋅
Unpacking Kovter malware Kovter |
| 2022-06-17
⋅
Github (monoxgas)
⋅
sRDI - Shellcode Reflective DLL Injection sRDI |
| 2022-06-17
⋅
Github (NtQuerySystemInformation)
⋅
A reverse engineer primer on Qakbot Dll Stager: From initial execution to multithreading. QakBot |
| 2022-06-17
⋅
Zscaler
⋅
Resurgence of Voicemail-themed phishing attacks targeting key industry verticals in the US |
| 2022-06-17
⋅
Cleafy
⋅
BRATA is evolving into an Advanced Persistent Threat BRATA |
| 2022-06-17
⋅
SANS ISC
⋅
Malspam pushes Matanbuchus malware, leads to Cobalt Strike Cobalt Strike Matanbuchus |
| 2022-06-16
⋅
Group-IB
⋅
Thousands of IDs exposed in yet another data breach in Brazil |
| 2022-06-16
⋅
Blackberry
⋅
Threat Thursday: Unique Delivery Method for Snake Keylogger 404 Keylogger |
| 2022-06-16
⋅
RiskIQ
⋅
RiskIQ: New ManaTools Panel Identified |
| 2022-06-16
⋅
Lookout Uncovers Android Spyware Deployed in Kazakhstan Hermit |
| 2022-06-16
⋅
Lookout
⋅
Lookout Uncovers Android Spyware Deployed in Kazakhstan |
| 2022-06-16
⋅
SANS ISC
⋅
Houdini is Back Delivered Through a JavaScript Dropper Houdini |