Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-11-20Group-IBOleg Skulkin, Roman Rezvukhin, Semyon Rogachev
The Locking Egregor
Egregor QakBot
2020-11-20360 netlabAlex Turing, CNCERT, Hui Wang, Qihoo 360
MooBot on the run using another 0 day targeting UNIX CCTV DVR
MooBot
2020-11-20ZDNetCatalin Cimpanu
The malware that usually installs ransomware and you need to remove right away
Avaddon BazarBackdoor Buer Clop Cobalt Strike Conti DoppelPaymer Dridex Egregor Emotet FriedEx MegaCortex Phorpiex PwndLocker QakBot Ryuk SDBbot TrickBot Zloader
2020-11-20DomainToolsBlack Lotus Labs, Joe Slowik, Lumen
Current Events to Widespread Campaigns: Pivoting from Samples to Identify Activity
2020-11-20Bleeping ComputerLawrence Abrams
LightBot: TrickBot’s new reconnaissance malware for high-value targets
LightBot TrickBot
2020-11-20F-Secure LabsRiccardo Ancarani
Detecting Cobalt Strike Default Modules via Named Pipe Analysis
Cobalt Strike
2020-11-20360 netlabJiaYu
Blackrota, a highly obfuscated backdoor developed by Go
Cobalt Strike
2020-11-19Rewterz Information SecurityRewterz Information Security
Rewterz Threat Alert – Common Raven – IOCs
BatchWiper Common Raven
2020-11-19ioactiveCorey Thuen
Hiding in the Noise
2020-11-19FireEyeAlyssa Rahman, Andrew Oliveau, Brett Hawkins
Purgalicious VBA: Macro Obfuscation With VBA Purging
2020-11-19GEMINIGEMINI
Chinese Scam Shops Lure Black Friday Shoppers
2020-11-19CofenseKyle Duncan
Threat Actor Utilizes COVID-19 Uncertainty to Target Users
2020-11-19CybereasonAssaf Dahan, Tom Fakterman
Cybereason vs. MedusaLocker Ransomware
MedusaLocker
2020-11-19ArmorbloxArjun Sambamoorthy
OK Google, Build Me a Phishing Campaign
2020-11-19ThreatpostElizabeth Montalbano
APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies
Quasar RAT Ryuk
2020-11-19TelsyTelsy Research Team
QNodeService stepped up its features while operated in widespread credential-theft campaigns
QNodeService
2020-11-19Bleeping ComputerLawrence Abrams
Mount Locker ransomware now targets your TurboTax tax returns
Mount Locker
2020-11-19Twitter (@VK_intel)Vitali Kremez
Tweet on Trickbot Group pushing LIGHTBOT powershell script to gather information about AD Server
LightBot
2020-11-19FBIFBI
MU-000140-MW: Indicators of Compromise Associated with Ragnar Locker Ransomware
RagnarLocker
2020-11-19SANS ISC InfoSec ForumsXavier Mertens
PowerShell Dropper Delivering Formbook
Formbook