Click here to download all references as Bib-File.•
| 2023-04-01
⋅
Github (dodo-sec)
⋅
SmoothOperator 3CX Backdoor |
| 2023-03-23
⋅
⋅
AhnLab
⋅
Kimsuky group distributes malware disguised as a profile file (GitHub) |
| 2023-03-21
⋅
Github (rivitna)
⋅
BlackCat v3 Decryptor Scripts BlackCat BlackCat |
| 2023-03-09
⋅
Github (cocomelonc)
⋅
Malware AV/VM evasion - part 13: encrypt/decrypt payload via Madryga. Simple C++ example. |
| 2023-02-14
⋅
Github (clairelevin)
⋅
Writing a decryptor for Jaff ransomware Jaff |
| 2023-02-09
⋅
Github (muha2xmad)
⋅
Technical analysis of Godfather android malware Godfather |
| 2023-02-08
⋅
K7 Security
⋅
Play Store App Serves Coper Via GitHub Coper |
| 2022-12-25
⋅
Github (0day2)
⋅
SapphireStealer SapphireStealer |
| 2022-12-25
⋅
Github (MalGamy)
⋅
yara Nokoyawa Ransomware |
| 2022-12-12
⋅
Github (MalGamy)
⋅
YARA rule for Vohuk ransomware Vohuk |
| 2022-12-09
⋅
Secureworks
⋅
Drokbk Malware Uses GitHub as Dead Drop Resolver Drokbk |
| 2022-12-03
⋅
Github (kevoreilly)
⋅
Nighthawk DLL Payload Configuration Parser Nighthawk |
| 2022-12-02
⋅
Github (binref)
⋅
The Refinery Files 0x06: Qakbot Decoder QakBot |
| 2022-11-28
⋅
Github (reecdeep)
⋅
HiveV5 file decryptor PoC Hive Hive |
| 2022-11-25
⋅
Github (struppigel)
⋅
Python script to decode NightHawk strings Nighthawk |
| 2022-11-21
⋅
Github (larsborn)
⋅
Tofsee String Decryption Code Tofsee |
| 2022-11-04
⋅
⋅
Github (hktalent)
⋅
Behinder Mem Shell Behinder |
| 2022-11-03
⋅
Github (chronicle)
⋅
GCTI Open Source Detection Signatures Cobalt Strike Sliver |
| 2022-10-08
⋅
Github (itaymigdal)
⋅
Nimbo-C2 - A new C2 Framework Nimbo-C2 Nimbo-C2 |
| 2022-10-01
⋅
Github (k8gege)
⋅
Ladon hacking framework Ladon |