Click here to download all references as Bib-File.
2022-08-04 ⋅ YouTube (Arda Büyükkaya) ⋅ LockBit Ransomware Sideloads Cobalt Strike Through Microsoft Security Tool Cobalt Strike LockBit |
2022-08-02 ⋅ Cisco Talos ⋅ Manjusaka: A Chinese sibling of Sliver and Cobalt Strike Manjusaka Cobalt Strike Manjusaka |
2022-07-28 ⋅ SentinelOne ⋅ Living Off Windows Defender | LockBit Ransomware Sideloads Cobalt Strike Through Microsoft Security Tool Cobalt Strike LockBit |
2022-07-27 ⋅ Trend Micro ⋅ Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike Cobalt Strike GootKit Kronos REvil SunCrypt |
2022-07-27 ⋅ SANS ISC ⋅ IcedID (Bokbot) with Dark VNC and Cobalt Strike DarkVNC IcedID |
2022-07-22 ⋅ Binary Ninja ⋅ Reverse Engineering a Cobalt Strike Dropper With Binary Ninja Cobalt Strike |
2022-07-13 ⋅ Palo Alto Networks Unit 42 ⋅ Cobalt Strike Analysis and Tutorial: CS Metadata Encryption and Decryption Cobalt Strike |
2022-07-13 ⋅ Malwarebytes Labs ⋅ Cobalt Strikes again: UAC-0056 continues to target Ukraine in its latest campaign Cobalt Strike |
2022-07-11 ⋅ Cert-UA ⋅ UAC-0056 attack on Ukrainian state organizations using Cobalt Strike Beacon (CERT-UA#4941) Cobalt Strike |
2022-07-07 ⋅ SANS ISC ⋅ Emotet infection with Cobalt Strike Cobalt Strike Emotet |
2022-07-06 ⋅ Cert-UA ⋅ UAC-0056 cyberattack on Ukrainian state organizations using Cobalt Strike Beacon (CERT-UA#4914) Cobalt Strike |
2022-06-17 ⋅ SANS ISC ⋅ Malspam pushes Matanbuchus malware, leads to Cobalt Strike Cobalt Strike Matanbuchus |
2022-05-20 ⋅ sonatype ⋅ New 'pymafka' malicious package drops Cobalt Strike on macOS, Windows, Linux Cobalt Strike |
2022-05-12 ⋅ Red Canary ⋅ Gootloader and Cobalt Strike malware analysis GootLoader Cobalt Strike |
2022-05-08 ⋅ IronNet ⋅ Tracking Cobalt Strike Servers Used in Cyberattacks on Ukraine Cobalt Strike |
2022-05-06 ⋅ Palo Alto Networks Unit 42 ⋅ Cobalt Strike Analysis and Tutorial: CS Metadata Encoding and Decoding Cobalt Strike |
2022-05-04 ⋅ Twitter (@felixw3000) ⋅ Twitter Thread with info on infection chain with IcedId, Cobalt Strike, and Hidden VNC. Cobalt Strike IcedID PhotoLoader |
2022-04-27 ⋅ Sentinel LABS ⋅ LockBit Ransomware Side-loads Cobalt Strike Beacon with Legitimate VMware Utility Cobalt Strike LockBit BRONZE STARLIGHT |
2022-04-27 ⋅ Sentinel LABS ⋅ LockBit Ransomware Side-loads Cobalt Strike Beacon with Legitimate VMware Utility Cobalt Strike LockBit |
2022-04-21 ⋅ ZeroSec ⋅ Understanding Cobalt Strike Profiles - Updated For Cobalt Strike 4.6 Cobalt Strike |