Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-01-06Sekoiasekoia
NOBELIUM’s EnvyScout infection chain goes in the registry, targeting embassies
Cobalt Strike EnvyScout
2022-01-05AhnLabASEC Analysis Team
Analysis Report on Kimsuky Group’s APT Attacks (AppleSeed, PebbleDash)
Appleseed Kimsuky PEBBLEDASH
2022-01-05LumenDanny Adamitis, Steve Rudd
New Konni Campaign Kicks Off the New Year by Targeting Russian Ministry of Foreign Affairs
Konni
2022-01-05VMRayVMRay Labs Team
Malware Analysis Spotlight: Kuzuluy Phishing Kit
2022-01-05McAfeeEoin Carroll
Technical Analysis of CVE-2021-1732
2022-01-05Check PointGolan Cohen
Can You Trust a File’s Digital Signature? New Zloader Campaign exploits Microsoft’s Signature Verification putting users at risk
Zloader
2022-01-05ARMORArmor
Threat Intelligence Report: The Evolution of Doppel Spider from BitPaymer to Grief Ransomware
DoppelPaymer FriedEx
2022-01-05TelsyClaudio Di Giuseppe
SIDECOPY APT: From Windows to *nix
SideCopy
2022-01-05SYGNIAAmnon Kushnir, Arie Zilberstein, Boaz Wasserman, Itay Shohat, Noam Lifshitz, Oren Biderman, Yoav Mazor
Elephant Beetle: Uncovering an Organized Financial-Theft Operation
FIN13
2022-01-04SYGNIASygnia Incident Response Team
TG2003: Elephant Beetle - Uncovering an Organized Financial-theft Operation
FIN13
2022-01-04MicrosoftMicrosoft Detection and Response Team (DART)
Leveraging the Power of KQL in Incident Response
2022-01-04forensicitguyTony Lambert
Extracting Indicators from a Packed Mirai Sample
Mirai
2022-01-04The Cyber Security TimesJohn Greenwood
Purple Fox malware is actively distributed via Telegram Installers
PurpleFox
2022-01-03Dee
Tweet on a live C2 panel for Mint stealer
MintStealer
2022-01-03Cluster25Cluster25
North Korean Group “KONNI” Targets The Russian Diplomatic Sector With New Versions Of Malware Implants
Konni
2022-01-03forensicitguyTony Lambert
A Tale of Two Dropper Scripts for Agent Tesla
Agent Tesla
2022-01-03AhnLabASEC Analysis Team
Distribution of Redline Stealer Disguised as Software Crack
DanaBot RedLine Stealer Vidar
2022-01-03MinervaLabsNatalie Zargarov
Malicious Telegram Installer Drops Purple Fox Rootkit
PurpleFox
2022-01-02Atomic Matryoshkaz3r0day_504
"Cracking Open the Malware Piñata" Series: Intro to Dynamic Analysis with RedLineStealer
RedLine Stealer
2022-01-02BleepingComputerLawrence Abrams
Malicious CSV text files used to install BazarBackdoor malware
BazarBackdoor