Click here to download all references as Bib-File.
2022-01-25 ⋅ Medium (Cryptax) ⋅ BianLian C&C domain name BianLian Hydra |
2022-01-21 ⋅ Medium (Cryptax) ⋅ Creating a safe dummy C&C to test Android bots BianLian Hydra |
2022-01-18 ⋅ Medium (Scarlet Shark) ⋅ PerSwaysion Threat Actor Updates Their Techniques and Infrastructure |
2022-01-17 ⋅ Medium (Cryptax) ⋅ Android/BianLian payload BianLian Hydra |
2022-01-14 ⋅ Medium (Cryptax) ⋅ Multidex trick to unpack Android/BianLian BianLian |
2022-01-11 ⋅ Medium walmartglobaltech ⋅ Signed DLL campaigns as a service BATLOADER Cobalt Strike ISFB Zloader |
2022-01-02 ⋅ Medium amgedwageh ⋅ Automating The Analysis Of An AutoIT Script That Wraps A Remcos RAT Remcos |
2021-12-31 ⋅ victory medium ⋅ Compromised Godaddy Infrastructure Attacking Numerous U.S. Government Websites to Promote “Canadian Pharmacy” Scam Websites |
2021-12-28 ⋅ Medium Crovax ⋅ Extracting Hancitor’s Configuration with Ghidra part 1 Hancitor |
2021-12-14 ⋅ Medium s2wlab ⋅ Logs of Log4shell (CVE-2021-44228): log4j is ubiquitous Kinsing Mirai Tsunami |
2021-12-10 ⋅ Medium s2wlab ⋅ BlackCat: New Rust based ransomware borrowing BlackMatter’s configuration BlackCat BlackMatter |
2021-11-30 ⋅ Medium nusenu ⋅ Is "KAX17" performing de-anonymization Attacks against Tor Users? |
2021-11-19 ⋅ insomniacs(Medium) ⋅ It’s a BEE! It’s a… no, it’s ShadowPad. ShadowPad |
2021-11-18 ⋅ Medium 0xchina ⋅ Malware reverse engineering (Ryuk Ransomware) Ryuk |
2021-11-17 ⋅ Medium ThreatMiner ⋅ Android Trojan Targeting Korean Demographic using GitHub for C2 Unidentified APK 006 |
2021-10-29 ⋅ Medium Luatix ⋅ OpenCTI data sharing |
2021-10-22 ⋅ Medium Jang ⋅ 50 Shades of SolarWinds Orion Deserialization (Part 1: CVE-2021–35215) |
2021-10-20 ⋅ Medium ThreatMiner ⋅ TM Follow-Up (TAG_APT35_14/10/21) |
2021-10-18 ⋅ Medium Confiant ⋅ Profiling hackers using the Malvertising Attack Matrix by Confiant |
2021-10-14 ⋅ Medium walmartglobaltech ⋅ Investigation into the state of NIM malware Part 2 Cobalt Strike NimGrabber Nimrev Unidentified 088 (Nim Ransomware) |