Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-03-01Twitter (@TheDFIRReport)The DFIR Report
Twitter thread with highlights from conti leaks
Conti
2022-03-01Twitter (@ContiLeaks)ContiLeaks
Tweet on Emotet final server scheme
Emotet
2022-02-28Twitter (@struppigel)Karsten Hahn
Tweet on Gofing discovery
Gofing
2022-02-28Twitter (@M_haggis)The Haag
Tweet on parsing Daxin driver metadata using powershell
Daxin
2022-02-25Twitter (@fr0gger)Thomas Roccia
Tweets with an overview of HermeticWiper
HermeticWiper
2022-02-23Twitter (@threatintel)Symantec Threat Intelligence
Tweet on new wiper malware being used in attacks on Ukraine
HermeticWiper
2022-02-17Twitter (@Honeymoon_IoC)Gi7w0rm
Tweets on win.prometei caught via Cowrie
Prometei
2022-02-03GdataKarsten Hahn
QR codes on Twitter deliver malicious Chrome extension
Choziosi
2022-01-24Twitter (@_icebre4ker_)_icebre4ker_
Vultur Dropper on Google Play Store
Vultur
2022-01-21Twitter (@_CPResearch_)Check Point Research
Tweet on WhiteLambert malware
Lambert
2022-01-20Twitter (@ClearskySec)ClearSky Cybersecurity
Tweet on ComLook backdoor used by Turla
ComLook
2022-01-20Twitter (@nunohaien)Tillmann Werner
Tweet on key points of Whispergate wiper
WhisperGate
2022-01-18Twitter (@knight0x07)neeraj
Thread on yet another comprehensive analysis of WHISPERGATE
WhisperGate
2022-01-17Twitter (@HuskyHacksMK)Matt | HuskyHacks
WhisperGate Wiper Malware Analysis Live Thread
WhisperGate
2022-01-17Twitter (@Libranalysis)Max Kersten
Tweet on short analysis of WHISPERGATE stage 3 malware
WhisperGate
2022-01-14Twitter (@billyleonard)Billy Leonard, Google Threat Analysis Group
Tweet on APT28 credential phishing campaigns targeting Ukraine
2022-01-13Twitter (@8th_grey_owl)8thGreyOwl
Tweet on SelfMake Loader
SelfMake Loader
2022-01-12Twitter (MalwareHunterTeam)MalwareHunterTeam
Tweet with original discovery of VajraSpy
VajraSpy
2022-01-11Twitter (@cglyer)Christopher Glyer
Tweet on CN based ransomware operator using log4shell to deploy NightSky
NightSky BRONZE STARLIGHT
2022-01-11Twitter (@cglyer)Christopher Glyer
Thread on DEV-0401, a china based ransomware operator exploiting VMware Horizon with log4shell and deploying NightSky ransomware
Cobalt Strike NightSky