Click here to download all references as Bib-File.•
2020-05-26
⋅
Bleeping Computer
⋅
New [F]Unicorn ransomware hits Italy via fake COVID-19 infection map HiddenTear |
2020-05-26
⋅
CrowdStrike
⋅
Weaponized Disk Image Files: Analysis, Trends and Remediation Nanocore RAT |
2020-05-26
⋅
Seguranca Informatica
⋅
The updated Grandoreiro Malware equipped with latenbot-C2 features in Q2 2020 now extended to Portuguese banks Grandoreiro |
2020-05-26
⋅
ESET Research
⋅
From Agent.BTZ to ComRAT v4: A ten‑year journey (White Paper) Agent.BTZ |
2020-05-26
⋅
ESET Research
⋅
From Agent.BTZ to ComRAT v4: A ten‑year journey Agent.BTZ |
2020-05-25
⋅
Twitter (@JAMESWT_MHT)
⋅
Tweet on FuckUnicorn instance of HiddenTear HiddenTear |
2020-05-25
⋅
Elastic
⋅
The Elastic Guide to Threat Hunting |
2020-05-25
⋅
⋅
CERT-FR
⋅
INDICATEURS DE COMPROMISSION DU CERT-FR - Objet: Le code malveillant Dridex Dridex |
2020-05-25
⋅
⋅
CERT-FR
⋅
Le Code Malveillant Dridex: Origines et Usages Dridex |
2020-05-25
⋅
⋅
AhnLab
⋅
Hangul malware distributed in real estate investment related emails (using EPS) |
2020-05-24
⋅
or10nlabs
⋅
Reverse Engineering the Mustang Panda PlugX Loader PlugX |
2020-05-24
⋅
Palo Alto Networks Unit 42
⋅
Using AI to Detect Malicious C2 Traffic Emotet Sality |
2020-05-24
⋅
Positive Technologies
⋅
Operation TA505: network infrastructure. Part 3. AndroMut Buhtrap SmokeLoader |
2020-05-24
⋅
Nullteilerfrei Blog
⋅
Zloader String Obfuscation Zloader |
2020-05-24
⋅
Malware and Stuff
⋅
Examining Smokeloader’s Anti Hooking technique SmokeLoader |
2020-05-23
⋅
InfoSec Handlers Diary Blog
⋅
AgentTesla Delivered via a Malicious PowerPoint Add-In Agent Tesla |
2020-05-23
⋅
360 netlab
⋅
New activity of DoubleGuns Group, control hundreds of thousands of bots via public cloud service |
2020-05-23
⋅
Australian Cyber Security Centre
⋅
Summary of Tradecraft Trends for 2019-20: Tactics, Techniques and Procedures Used to Target Australian Networks |
2020-05-22
⋅
Yoroi
⋅
Cyber-Criminal espionage Operation insists on Italian Manufacturing Agent Tesla |
2020-05-22
⋅
Positive Technologies
⋅
Operation TA505: investigating the ServHelper backdoor with NetSupport RAT. Part 2. NetSupportManager RAT ServHelper |