Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-04-14Medium (@DCSO_CyTec)Axel Wauer, DCSO CyTec
404 — File still found
SideWinder
2022-04-04The DFIR Report@0xtornado, @MettalicHack, @yatinwad, @_pete_0
Stolen Images Campaign Ends in Conti Ransomware
Conti IcedID
2022-03-12Twitter (@ET_Labs)ET Labs
A quick thread examining the network artifacts of the HermeticWizard spreading
HermeticWizard
2022-03-10Twitter (@teamcymru_S2)Team Cymru
Tweet on Crimson RAT infrastructure used by APT36
Crimson RAT
2022-02-28Twitter (@M_haggis)The Haag
Tweet on parsing Daxin driver metadata using powershell
Daxin
2022-02-26Atomic Matryoshkaz3r0day_504
Infographic: APTs in South America
Imminent Monitor RAT Machete
2022-02-21Atomic Matryoshkaz3r0day_504
Ousaban MSI Installer Analysis
Ousaban
2022-02-17Twitter (@Honeymoon_IoC)Gi7w0rm
Tweets on win.prometei caught via Cowrie
Prometei
2022-01-28Atomic Matryoshkaz3r0day_504
Malware Headliners: LokiBot
Loki Password Stealer (PWS)
2022-01-24Twitter (@_icebre4ker_)_icebre4ker_
Vultur Dropper on Google Play Store
Vultur
2022-01-22Atomic Matryoshkaz3r0day_504
Malware Headliners: Emotet
Emotet
2022-01-21Twitter (@_CPResearch_)Check Point Research
Tweet on WhiteLambert malware
Lambert
2022-01-20CybleincCyble
Deep Dive Into Ragnar_locker Ransomware Gang
RagnarLocker
2022-01-15Atomic Matryoshkaz3r0day_504
Malware Headliners: Qakbot
QakBot
2022-01-13Twitter (@8th_grey_owl)8thGreyOwl
Tweet on SelfMake Loader
SelfMake Loader
2022-01-09Github (xephora)@x3ph1
Observed malicious IOCs for the ChromeLoader/CS_installer aka Choziosi Loader Malware
Choziosi Choziosi
2022-01-09Atomic Matryoshkaz3r0day_504
Malware Headliners: Dridex
Dridex
2022-01-02Atomic Matryoshkaz3r0day_504
"Cracking Open the Malware Piñata" Series: Intro to Dynamic Analysis with RedLineStealer
RedLine Stealer
2021-11-17Twitter (@Unit42_Intel)Unit 42
Tweet on Matanbuchus Loader used to deliver Qakbot (tag obama128b) and follow-up CobaltStrike
Cobalt Strike QakBot
2021-11-16Twitter (@_CPResearch_)Check Point Research
Tweet on 32bit version of CVE-2021-1732 exploited by BITTER group