Click here to download all references as Bib-File.
2020-12-14 ⋅ Blueliv ⋅ Using Qiling Framework to Unpack TA505 packed samples AndroMut Azorult Silence TinyMet |
2020-09-30 ⋅ Blueliv ⋅ Rooty Dolphin uses Mekotio to target bank clients in South America and Europe Mekotio |
2020-08-05 ⋅ Blueliv ⋅ Playing with GuLoader Anti-VM techniques CloudEyE |
2020-06-30 ⋅ Blueliv ⋅ M00nD3v, HawkEye threat actor, sells malware after COVID-19 diagnosis HawkEye Keylogger |
2019-12-17 ⋅ Blueliv ⋅ TA505 evolves ServHelper, uses Predator The Thief and Team Viewer Hijacking ServHelper TA505 |
2019-04-29 ⋅ Blueliv ⋅ Where is Emotet? Latest geolocation data Emotet |
2019-02-07 ⋅ Blueliv ⋅ Sales of AZORult grind to an AZOR-halt Azorult |
2018-10-05 ⋅ Blueliv ⋅ ARS Loader evolution, a new stealer (ZeroEvil) and AirNaine (TA545) ARS VBS Loader ZeroEvil |