Click here to download all references as Bib-File.•
2021-01-21
⋅
⋅
360 Threat Intelligence Center
⋅
Disclosure of Manling Flower Organization (APT-C-08) using Warzone RAT attack Ave Maria |
2021-01-21
⋅
⋅
Netlab
⋅
Necro在频繁升级,新版本开始使用PyInstaller和DGA N3Cr0m0rPh |
2021-01-21
⋅
Sophos Labs
⋅
MrbMiner: Cryptojacking to bypass international sanctions |
2021-01-21
⋅
ESET Research
⋅
Vadokrist: A wolf in sheep’s clothing Vadokrist |
2021-01-21
⋅
InfoSec Handlers Diary Blog
⋅
Powershell Dropping a REvil Ransomware REvil |
2021-01-20
⋅
Team Cymru
⋅
MoqHao Part 1: Identifying Phishing Infrastructure MoqHao |
2021-01-20
⋅
Twitter (@malwrhunterteam)
⋅
Tweet on Vovalex ransomware Vovalex |
2021-01-20
⋅
Trend Micro
⋅
XDR investigation uncovers PlugX, unique technique in APT attack PlugX |
2021-01-20
⋅
FireEye
⋅
Emulation of Kernel Mode Rootkits With Speakeasy Winnti |
2021-01-20
⋅
Medium walmartglobaltech
⋅
Anchor and Lazarus together again? Anchor TrickBot |
2021-01-20
⋅
Microsoft
⋅
Deep dive into the Solorigate second-stage activation: From SUNBURST to TEARDROP and Raindrop Cobalt Strike SUNBURST TEARDROP |
2021-01-20
⋅
JPCERT/CC
⋅
Commonly Known Tools Used by Lazarus Lazarus Group |
2021-01-19
⋅
Twitter (@ConfiantIntel)
⋅
Tweet on WizardUpdate macOS backdoor Vigram |
2021-01-19
⋅
Medium validhorizon
⋅
Oh, So You Got IOCs? Being a Good CTI Consumer |
2021-01-19
⋅
Palo Alto Networks Unit 42
⋅
Wireshark Tutorial: Examining Emotet Infection Traffic Emotet GootKit IcedID QakBot TrickBot |
2021-01-19
⋅
HP
⋅
Dridex Malicious Document Analysis: Automating the Extraction of Payload URLs Dridex |
2021-01-19
⋅
Malwarebytes
⋅
Malwarebytes targeted by Nation State Actor implicated in SolarWinds breach. Evidence suggests abuse of privileged access to Microsoft Office 365 and Azure environments |
2021-01-19
⋅
Github (fireeye)
⋅
Mandiant Azure AD Investigator: Focusing on UNC2452 TTPs SUNBURST |
2021-01-19
⋅
⋅
Twitter (@jpcert_ac)
⋅
Tweet on LODEINFO ver 0.47 spotted ITW targeting Japan LODEINFO |
2021-01-19
⋅
Mandiant
⋅
Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 (WHITE PAPER) |