Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2020-11-27PTSecurityDenis Goydenko, Alexey Vishnyakov
@online{goydenko:20201127:investigation:7d12cee, author = {Denis Goydenko and Alexey Vishnyakov}, title = {{Investigation with a twist: an accidental APT attack and averted data destruction}}, date = {2020-11-27}, organization = {PTSecurity}, url = {https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/incident-response-polar-ransomware-apt27/}, language = {English}, urldate = {2020-12-01} } Investigation with a twist: an accidental APT attack and averted data destruction
TwoFace CHINACHOPPER HyperBro MegaCortex MimiKatz
2020-09-01Twitter (@Vishnyak0v)Alexey Vishnyakov
@online{vishnyakov:20200901:sample:cbed5e0, author = {Alexey Vishnyakov}, title = {{Tweet on sample discovery}}, date = {2020-09-01}, organization = {Twitter (@Vishnyak0v)}, url = {https://twitter.com/Vishnyak0v/status/1300704689865060353}, language = {English}, urldate = {2020-09-01} } Tweet on sample discovery
Unidentified 078 (Zebrocy Nim Loader?)
2020-08-18CUJOAIAlbert Zsigovits, 0xffff0800, Alexey Vishnyakov
@online{zsigovits:20200818:upx:aed6cf3, author = {Albert Zsigovits and 0xffff0800 and Alexey Vishnyakov}, title = {{UPX Anti-Unpacking Techniques in IoT Malware}}, date = {2020-08-18}, organization = {CUJOAI}, url = {https://cujo.com/upx-anti-unpacking-techniques-in-iot-malware/}, language = {English}, urldate = {2021-05-11} } UPX Anti-Unpacking Techniques in IoT Malware
Mozi
2020-06-19Positive TechnologiesAlexey Vishnyakov
@online{vishnyakov:20200619:eagle:01efbbd, author = {Alexey Vishnyakov}, title = {{The eagle eye is back: old and new backdoors from APT30}}, date = {2020-06-19}, organization = {Positive Technologies}, url = {https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/eagle-eye-is-back-apt30/}, language = {English}, urldate = {2020-06-20} } The eagle eye is back: old and new backdoors from APT30
backspace NETEAGLE RCtrl RHttpCtrl APT30