Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-06-13Avast DecodedJan Neduchal, David Álvarez
@online{neduchal:20220613:linux:67027a5, author = {Jan Neduchal and David Álvarez}, title = {{Linux Threat Hunting: ‘Syslogk’ a kernel rootkit found under development in the wild}}, date = {2022-06-13}, organization = {Avast Decoded}, url = {https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/}, language = {English}, urldate = {2022-06-15} } Linux Threat Hunting: ‘Syslogk’ a kernel rootkit found under development in the wild
Rekoobe
2022-06-09AvastDominika Regéciová
@online{regciov:20220609:yara:ae26e01, author = {Dominika Regéciová}, title = {{Yara: In Search Of Regular Expressions}}, date = {2022-06-09}, organization = {Avast}, url = {https://engineering.avast.io/yara-in-search-of-regular-expressions/}, language = {English}, urldate = {2022-06-09} } Yara: In Search Of Regular Expressions
2022-06-08AvastPavel Novák
@online{novk:20220608:crypto:e07011c, author = {Pavel Novák}, title = {{Crypto stealing campaign spread via fake cracked software}}, date = {2022-06-08}, organization = {Avast}, url = {https://blog.avast.com/fakecrack-campaign}, language = {English}, urldate = {2022-06-17} } Crypto stealing campaign spread via fake cracked software
2022-06-01AvastJakub Vávra
@online{vvra:20220601:smsfactory:766928d, author = {Jakub Vávra}, title = {{SMSFactory Android Trojan producing high costs for victims}}, date = {2022-06-01}, organization = {Avast}, url = {https://blog.avast.com/smsfactory-android-trojan}, language = {English}, urldate = {2022-06-07} } SMSFactory Android Trojan producing high costs for victims
2022-04-21Avast DecodedDaniel Beneš
@online{bene:20220421:warez:b31715c, author = {Daniel Beneš}, title = {{Warez users fell for Certishell}}, date = {2022-04-21}, organization = {Avast Decoded}, url = {https://decoded.avast.io/danielbenes/warez-users-fell-for-certishell/}, language = {English}, urldate = {2022-04-29} } Warez users fell for Certishell
2022-04-14Avast DecodedVladimir Martyanov
@online{martyanov:20220414:zloader:23c520a, author = {Vladimir Martyanov}, title = {{Zloader 2: The Silent Night}}, date = {2022-04-14}, organization = {Avast Decoded}, url = {https://decoded.avast.io/vladimirmartyanov/zloader-the-silent-night/}, language = {English}, urldate = {2022-04-15} } Zloader 2: The Silent Night
ISFB Raccoon Zloader
2022-04-07Avast DecodedPavel Novák, Jan Rubín
@online{novk:20220407:parrot:9c74f9b, author = {Pavel Novák and Jan Rubín}, title = {{Parrot TDS takes over web servers and threatens millions}}, date = {2022-04-07}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janrubin/parrot-tds-takes-over-web-servers-and-threatens-millions/}, language = {English}, urldate = {2022-04-08} } Parrot TDS takes over web servers and threatens millions
FAKEUPDATES Parrot TDS Parrot TDS WebShell NetSupportManager RAT
2022-03-28AvastThreat Intelligence Team
@online{team:20220328:avast:03620fb, author = {Threat Intelligence Team}, title = {{Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool}}, date = {2022-03-28}, organization = {Avast}, url = {https://decoded.avast.io/threatintel/avast-finds-compromised-philippine-navy-certificate-used-in-remote-access-tool/}, language = {English}, urldate = {2022-04-05} } Avast Finds Compromised Philippine Navy Certificate Used in Remote Access Tool
Unidentified 091
2022-03-18AvastMartin Hron
@online{hron:20220318:mris:47b15bc, author = {Martin Hron}, title = {{Mēris and TrickBot standing on the shoulders of giants}}, date = {2022-03-18}, organization = {Avast}, url = {https://decoded.avast.io/martinhron/meris-and-trickbot-standing-on-the-shoulders-of-giants/}, language = {English}, urldate = {2022-03-23} } Mēris and TrickBot standing on the shoulders of giants
Glupteba Proxy Glupteba TrickBot
2022-03-16AvastMartin Chlumecký
@online{chlumeck:20220316:dirtymoe:48e136e, author = {Martin Chlumecký}, title = {{DirtyMoe: Worming Modules}}, date = {2022-03-16}, organization = {Avast}, url = {https://decoded.avast.io/martinchlumecky/dirtymoe-5/}, language = {English}, urldate = {2022-03-17} } DirtyMoe: Worming Modules
DirtyMoe
2022-03-09AvastVladimir Martyanov
@online{martyanov:20220309:raccoon:b35569a, author = {Vladimir Martyanov}, title = {{Raccoon Stealer: “Trash panda” abuses Telegram}}, date = {2022-03-09}, organization = {Avast}, url = {https://decoded.avast.io/vladimirmartyanov/raccoon-stealer-trash-panda-abuses-telegram}, language = {English}, urldate = {2022-03-10} } Raccoon Stealer: “Trash panda” abuses Telegram
Raccoon
2022-03-03Avast DecodedThreat Research Team
@online{team:20220303:help:d086921, author = {Threat Research Team}, title = {{Help for Ukraine: Free decryptor for HermeticRansom ransomware}}, date = {2022-03-03}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatresearch/help-for-ukraine-free-decryptor-for-hermeticransom-ransomware/}, language = {English}, urldate = {2022-03-03} } Help for Ukraine: Free decryptor for HermeticRansom ransomware
PartyTicket
2022-02-07SecurityAffairsPierluigi Paganini
@online{paganini:20220207:avast:12bb4e5, author = {Pierluigi Paganini}, title = {{Avast released a free decryptor for TargetCompany ransomware}}, date = {2022-02-07}, organization = {SecurityAffairs}, url = {https://securityaffairs.co/wordpress/127761/malware/targetcompany-ransomware-decryptor.html}, language = {English}, urldate = {2022-02-10} } Avast released a free decryptor for TargetCompany ransomware
TargetCompany
2022-02-07Avast DecodedAvast Threat Research Team
@online{team:20220207:decrypted:f204a1f, author = {Avast Threat Research Team}, title = {{Decrypted: TargetCompany Ransomware}}, date = {2022-02-07}, organization = {Avast Decoded}, url = {https://decoded.avast.io/threatresearch/decrypted-targetcompany-ransomware/}, language = {English}, urldate = {2022-02-10} } Decrypted: TargetCompany Ransomware
TargetCompany
2022-02-03AvastDavid Álvarez Pérez, Jan Neduchal
@online{prez:20220203:analysis:73b6f36, author = {David Álvarez Pérez and Jan Neduchal}, title = {{Analysis of Attack Against National Games of China Systems}}, date = {2022-02-03}, organization = {Avast}, url = {https://decoded.avast.io/janneduchal/analysis-of-attack-against-national-games-of-china-systems/}, language = {English}, urldate = {2022-02-04} } Analysis of Attack Against National Games of China Systems
2022-01-25AvastAnh ho, Igor Morgenstern
@online{ho:20220125:chasing:f22d873, author = {Anh ho and Igor Morgenstern}, title = {{Chasing Chaes Kill Chain}}, date = {2022-01-25}, organization = {Avast}, url = {https://decoded.avast.io/anhho/chasing-chaes-kill-chain/}, language = {English}, urldate = {2022-01-28} } Chasing Chaes Kill Chain
Chaes
2022-01-24AvastPavlína Kopecká
@online{kopeck:20220124:web:0c4cbcc, author = {Pavlína Kopecká}, title = {{Web Skimming Attacks Using Google Tag Manager}}, date = {2022-01-24}, organization = {Avast}, url = {https://decoded.avast.io/pavlinakopecka/web-skimming-attacks-using-google-tag-manager/}, language = {English}, urldate = {2022-01-25} } Web Skimming Attacks Using Google Tag Manager
2021-12-01AvastJan Rubín, Jakub Kaloč
@online{rubn:20211201:toss:0b5f12e, author = {Jan Rubín and Jakub Kaloč}, title = {{Toss a Coin to your Helper (Part 2 of 2)}}, date = {2021-12-01}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/toss-a-coin-to-your-helper}, language = {English}, urldate = {2021-12-07} } Toss a Coin to your Helper (Part 2 of 2)
2021-11-09Twitter (@AvastThreatLabs)
@online{avastthreatlabs:20211109:by:9f805da, author = {Twitter (@AvastThreatLabs)}, title = {{Tweet by Avast on a new Android Banker they call MasterFred}}, date = {2021-11-09}, url = {https://twitter.com/AvastThreatLabs/status/1458162276708483073}, language = {English}, urldate = {2021-11-10} } Tweet by Avast on a new Android Banker they call MasterFred
MasterFred
2021-11-03AvastMartin Chlumecký
@online{chlumeck:20211103:dirtymoe:93da365, author = {Martin Chlumecký}, title = {{DirtyMoe: Deployment}}, date = {2021-11-03}, organization = {Avast}, url = {https://decoded.avast.io/martinchlumecky/dirtymoe-4/}, language = {English}, urldate = {2021-11-08} } DirtyMoe: Deployment
DirtyMoe