Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-03-31Twitter (@LukasStefanko)Lukáš Štefanko
Tweet on VajraSpy
VajraSpy
2022-03-30Twitter (@hpsecurity)HP Wolf Security
Tweet on recent Mekotio Banker campaign
Mekotio
2022-03-24Twitter (@ESETresearch)ESET Research
Tweet on PipeMon variants by Winnti Group
PipeMon
2022-03-24Twitter (@struppigel)Karsten Hahn
Tweet on Ginzo Stealer
Ginzo Stealer
2022-03-15Twitter (@HackNPatch)HackNPatch
Tweet on Exploring CaddyWiper API resolution
CaddyWiper
2022-03-14Twitter (@ESETresearch)ESET Research
Tweet on CaddyWiper as 3rd destructive wiper found deployed against Ukraine
CaddyWiper Sunglow Blizzard
2022-03-12Twitter (@ET_Labs)ET Labs
A quick thread examining the network artifacts of the HermeticWizard spreading
HermeticWizard
2022-03-10Twitter (@Katechondic)Katechondic
Tweet on additional computer names "desktop-g1i8n3f" & "desktop-j6llo2k", seen with Crimson RAT C2 infrastructure used by APT36
Crimson RAT
2022-03-10Twitter (@teamcymru_S2)Team Cymru
Tweet on Crimson RAT infrastructure used by APT36
Crimson RAT
2022-03-09Twitter (@struppigel)Karsten Hahn
Tweets detailing NominatusToxicBattery
NominatusToxicBattery
2022-03-09Twitter (@silascutler)Silas Cutler
Tweet on HermeticWizard's self-spreading mechanism
HermeticWizard
2022-03-08Twitter (@CyberJack42)CyberJack
Tweet on ELFSHELF alias for KEYPLUG
KEYPLUG
2022-03-08Twitter (@ShaneHuntley)Google Threat Analysis Group, Shane Huntley
Tweet on APT31 phishing campaign targeting high profile Gmail users affiliated with the U.S. government in February
2022-03-08Twitter (@struppigel)Karsten Hahn
Tweet on KazyLoader
KazyLoader
2022-03-01Twitter (@TheDFIRReport)The DFIR Report
Twitter thread with highlights from conti leaks
Conti
2022-03-01Twitter (@ContiLeaks)ContiLeaks
Tweet on Emotet final server scheme
Emotet
2022-02-28Twitter (@struppigel)Karsten Hahn
Tweet on Gofing discovery
Gofing
2022-02-28Twitter (@M_haggis)The Haag
Tweet on parsing Daxin driver metadata using powershell
Daxin
2022-02-25Twitter (@fr0gger)Thomas Roccia
Tweets with an overview of HermeticWiper
HermeticWiper
2022-02-23Twitter (@threatintel)Symantec Threat Intelligence
Tweet on new wiper malware being used in attacks on Ukraine
HermeticWiper