Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-10-26Avast DecodedThreat Research Team
@online{team:20231026:rhysida:08ca4b6, author = {Threat Research Team}, title = {{Rhysida Ransomware Technical Analysis}}, date = {2023-10-26}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatresearch/rhysida-ransomware-technical-analysis/}, language = {English}, urldate = {2023-10-30} } Rhysida Ransomware Technical Analysis
Rhysida
2023-06-29Avast DecodedThreat Research Team
@online{team:20230629:decrypted:9d80eb8, author = {Threat Research Team}, title = {{Decrypted: Akira Ransomware}}, date = {2023-06-29}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatresearch/decrypted-akira-ransomware/}, language = {English}, urldate = {2023-07-02} } Decrypted: Akira Ransomware
Akira
2023-04-18Avast DecodedMartin Chlumecký
@online{chlumeck:20230418:ddosia:290d3e0, author = {Martin Chlumecký}, title = {{DDosia Project: How NoName057(16) is trying to improve the efficiency of DDoS attacks}}, date = {2023-04-18}, organization = {Avast Decoded}, url = {https://decoded.avast.io/martinchlumecky/ddosia-project-how-noname05716-is-trying-to-improve-the-efficiency-of-ddos-attacks/}, language = {English}, urldate = {2023-05-05} } DDosia Project: How NoName057(16) is trying to improve the efficiency of DDoS attacks
Dosia
2023-03-15AvastLUIS CORRONS
@online{corrons:20230315:abusing:1614c8b, author = {LUIS CORRONS}, title = {{(Ab)using Adobe Acrobat Sign to distribute malware}}, date = {2023-03-15}, organization = {Avast}, url = {https://blog.avast.com/adobe-acrobat-sign-malware}, language = {English}, urldate = {2023-03-21} } (Ab)using Adobe Acrobat Sign to distribute malware
RedLine Stealer
2023-02-08Avast DecodedJan Vojtěšek
@online{vojtek:20230208:dota:e9c7473, author = {Jan Vojtěšek}, title = {{Dota 2 Under Attack: How a V8 Bug Was Exploited in the Game}}, date = {2023-02-08}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janvojtesek/dota-2-under-attack-how-a-v8-bug-was-exploited-in-the-game/}, language = {English}, urldate = {2023-02-13} } Dota 2 Under Attack: How a V8 Bug Was Exploited in the Game
2022-12-02Avast DecodedThreat Intelligence Team
@online{team:20221202:hitching:0cb7557, author = {Threat Intelligence Team}, title = {{Hitching a ride with Mustang Panda}}, date = {2022-12-02}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatintel/apt-treasure-trove-avast-suspects-chinese-apt-group-mustang-panda-is-collecting-data-from-burmese-government-agencies-and-opposition-groups/}, language = {English}, urldate = {2022-12-02} } Hitching a ride with Mustang Panda
PlugX
2022-11-21Avast DecodedJan Rubín
@online{rubn:20221121:vipersoftx:339e815, author = {Jan Rubín}, title = {{ViperSoftX: Hiding in System Logs and Spreading VenomSoftX}}, date = {2022-11-21}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janrubin/vipersoftx-hiding-in-system-logs-and-spreading-venomsoftx/}, language = {English}, urldate = {2022-11-25} } ViperSoftX: Hiding in System Logs and Spreading VenomSoftX
ViperSoftX
2022-09-22AvastJan Vojtěšek
@online{vojtek:20220922:raspberry:26502e1, author = {Jan Vojtěšek}, title = {{Raspberry Robin’s Roshtyak: A Little Lesson in Trickery}}, date = {2022-09-22}, organization = {Avast}, url = {https://decoded.avast.io/janvojtesek/raspberry-robins-roshtyak-a-little-lesson-in-trickery/}, language = {English}, urldate = {2022-09-22} } Raspberry Robin’s Roshtyak: A Little Lesson in Trickery
Raspberry Robin Roshtyak
2022-09-06AvastMartin Chlumecký
@online{chlumeck:20220906:prorussian:f4b99ca, author = {Martin Chlumecký}, title = {{Pro-Russian Group Targeting Ukraine Supporters with DDoS Attacks}}, date = {2022-09-06}, organization = {Avast}, url = {https://decoded.avast.io/martinchlumecky/bobik/}, language = {English}, urldate = {2022-09-07} } Pro-Russian Group Targeting Ukraine Supporters with DDoS Attacks
Bobik NoName057(16)
2022-08-19Github (Avast)Avast
@online{avast:20220819:iocs:bc5a832, author = {Avast}, title = {{IOCs for Manjusaka}}, date = {2022-08-19}, organization = {Github (Avast)}, url = {https://github.com/avast/ioc/tree/master/Manjusaka}, language = {English}, urldate = {2022-08-22} } IOCs for Manjusaka
Manjusaka Manjusaka
2022-07-21Avast DecodedJan Vojtěšek
@online{vojtek:20220721:return:0ad0bec, author = {Jan Vojtěšek}, title = {{The Return of Candiru: Zero-days in the Middle East}}, date = {2022-07-21}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janvojtesek/the-return-of-candiru-zero-days-in-the-middle-east/}, language = {English}, urldate = {2022-07-28} } The Return of Candiru: Zero-days in the Middle East
2022-07-19AvastDominika Regéciová
@online{regciov:20220719:yara:58f6c08, author = {Dominika Regéciová}, title = {{Yara vs. HyperScan: Alternative pattern-matching engines}}, date = {2022-07-19}, organization = {Avast}, url = {https://engineering.avast.io/yara-vs-hyperscan-alternative-pattern-matching-engines}, language = {English}, urldate = {2022-07-25} } Yara vs. HyperScan: Alternative pattern-matching engines
2022-07-13AvastDavid Álvarez
@online{lvarez:20220713:go:6ffedb7, author = {David Álvarez}, title = {{Go malware on the rise}}, date = {2022-07-13}, organization = {Avast}, url = {https://decoded.avast.io/davidalvarez/go-malware-on-the-rise/}, language = {English}, urldate = {2022-07-15} } Go malware on the rise
Backdoorit Caligula
2022-06-13Avast DecodedJan Neduchal, David Álvarez
@online{neduchal:20220613:linux:67027a5, author = {Jan Neduchal and David Álvarez}, title = {{Linux Threat Hunting: ‘Syslogk’ a kernel rootkit found under development in the wild}}, date = {2022-06-13}, organization = {Avast Decoded}, url = {https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/}, language = {English}, urldate = {2022-06-15} } Linux Threat Hunting: ‘Syslogk’ a kernel rootkit found under development in the wild
Rekoobe
2022-06-09AvastDominika Regéciová
@online{regciov:20220609:yara:ae26e01, author = {Dominika Regéciová}, title = {{Yara: In Search Of Regular Expressions}}, date = {2022-06-09}, organization = {Avast}, url = {https://engineering.avast.io/yara-in-search-of-regular-expressions/}, language = {English}, urldate = {2022-06-09} } Yara: In Search Of Regular Expressions
2022-06-08AvastPavel Novák
@online{novk:20220608:crypto:e07011c, author = {Pavel Novák}, title = {{Crypto stealing campaign spread via fake cracked software}}, date = {2022-06-08}, organization = {Avast}, url = {https://blog.avast.com/fakecrack-campaign}, language = {English}, urldate = {2022-06-17} } Crypto stealing campaign spread via fake cracked software
2022-06-03Avast DecodedThreat Intelligence Team
@online{team:20220603:outbreak:f121601, author = {Threat Intelligence Team}, title = {{Outbreak of Follina in Australia}}, date = {2022-06-03}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatintel/outbreak-of-follina-in-australia}, language = {English}, urldate = {2022-08-30} } Outbreak of Follina in Australia
AsyncRAT APT40
2022-06-03AvastThreat Intelligence Team
@online{team:20220603:outbreak:ee565fa, author = {Threat Intelligence Team}, title = {{Outbreak of Follina in Australia}}, date = {2022-06-03}, organization = {Avast}, url = {https://decoded.avast.io/threatintel/outbreak-of-follina-in-australia/}, language = {English}, urldate = {2022-07-25} } Outbreak of Follina in Australia
AsyncRAT
2022-06-01AvastJakub Vávra
@online{vvra:20220601:smsfactory:766928d, author = {Jakub Vávra}, title = {{SMSFactory Android Trojan producing high costs for victims}}, date = {2022-06-01}, organization = {Avast}, url = {https://blog.avast.com/smsfactory-android-trojan}, language = {English}, urldate = {2022-06-07} } SMSFactory Android Trojan producing high costs for victims
2022-04-21Avast DecodedDaniel Beneš
@online{bene:20220421:warez:b31715c, author = {Daniel Beneš}, title = {{Warez users fell for Certishell}}, date = {2022-04-21}, organization = {Avast Decoded}, url = {https://decoded.avast.io/danielbenes/warez-users-fell-for-certishell/}, language = {English}, urldate = {2022-04-29} } Warez users fell for Certishell