Malpedia Library

Click here to download all references as Bib-File.•

2021-03-01 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Nimar Loader
BazarBackdoor BazarNimrod Cobalt Strike

2021-01-20 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
Anchor and Lazarus together again?
Anchor TrickBot

2021-01-12 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
De-ofuscating GoLang Functions

2021-01-10 ⋅ Medium walmartglobaltech ⋅ Jason Reaves
MAN1, Moskal, Hancitor and a side of Ransomware
Cobalt Strike Hancitor SendSafe VegaLocker Moskalvzapoe

2020-07-22 ⋅ SentinelOne ⋅ Jason Reaves, Joshua Platt
Enter the Maze: Demystifying an Affiliate Involved in Maze (SNOW)
ISFB Maze TrickBot Zloader

2020-07-07 ⋅ Sentinel LABS ⋅ Jason Reaves
Breaking EvilQuest | Reversing A Custom macOS Ransomware File Encryption Routine
EvilQuest

2020-06-22 ⋅ Sentinel LABS ⋅ Jason Reaves, Joshua Platt
Inside a TrickBot Cobalt Strike Attack Server
Cobalt Strike TrickBot

2020-06-09 ⋅ Sentinel LABS ⋅ Jason Reaves
Valak Malware and the Connection to Gozi Loader ConfCrew
Valak

2020-05-31 ⋅ Medium walmartglobaltech ⋅ Jason Reaves, Joshua Platt
WastedLoader or DridexLoader?
Dridex WastedLocker

2020-05-14 ⋅ SentinelOne ⋅ Jason Reaves
Deep Dive Into TrickBot Executor Module “mexec”: Reversing the Dropper Variant
TrickBot

2020-05-08 ⋅ Twitter (@sysopfb) ⋅ Jason Reaves
Tweet on GuLoader anti analysis techniques
CloudEyE

2020-04-28 ⋅ Random RE ⋅ Jason Reaves
IcedID PhotoLoader evolution
PhotoLoader

2020-04-08 ⋅ SentinelOne ⋅ Jason Reaves
Deep Dive Into TrickBot Executor Module “mexec”: Hidden “Anchor” Bot Nexus Operations
Anchor TrickBot

2020-03-04 ⋅ SentinelOne ⋅ Jason Reaves
Breaking TA505’s Crypter with an SMT Solver
Clop CryptoMix MINEBRIDGE

2020-02-26 ⋅ SentinelOne ⋅ Jason Reaves
Revealing the Trick | A Deep Dive into TrickLoader Obfuscation
TrickBot

2020-02-10 ⋅ viXra ⋅ Jason Reaves
A Case Study into solving Crypters/Packers in Malware Obfuscation using an SMT approach
Locky

2020-01-09 ⋅ SentinelOne ⋅ Jason Reaves, Joshua Platt, Vitali Kremez
Top-Tier Russian Organized Cybercrime Group Unveils Fileless Stealthy “PowerTrick” Backdoor for High-Value Targets
TrickBot WIZARD SPIDER

2019-12-10 ⋅ Sentinel LABS ⋅ Jason Reaves, Joshua Platt, Vitali Kremez
Anchor Project | The Deadly Planeswalker: How The TrickBot Group United High-Tech Crimeware & APT
Anchor

2019-03-20 ⋅ Flashpoint ⋅ Jason Reaves, Joshua Platt
FIN7 Revisited: Inside Astra Panel and SQLRat Malware
SQLRat FIN7

2019-03-20 ⋅ Flashpoint ⋅ Jason Reaves, Joshua Platt
FIN7 Revisited: Inside Astra Panel and SQLRat Malware
DNSRat TinyMet

2019-03-13 ⋅ Flashpoint ⋅ Jason Reaves, Joshua Platt
‘DMSniff’ POS Malware Actively Leveraged to Target Small-, Medium-Sized Businesses
DMSniff

2018-05-12 ⋅ Random RE ⋅ Jason Reaves
MS Crypto Derive Functions

2017-05-04 ⋅ Fidelis Cybersecurity ⋅ Jason Reaves
Blackmoon Rising: Banking Trojan Back with New Framework
KrBanker