Click here to download all references as Bib-File.•
2024-04-16
⋅
Mandiant
⋅
APT44: Unearthing Sandworm VPNFilter BlackEnergy CaddyWiper EternalPetya HermeticWiper Industroyer INDUSTROYER2 Olympic Destroyer PartyTicket RoarBAT Sandworm |
2024-04-04
⋅
Mandiant
⋅
Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies |
2024-01-18
⋅
Detect Mortis Locker Ransomware with YARA Mortis |
2023-11-21
⋅
Palo Alto Networks Unit 42
⋅
Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors BeaverTail InvisibleFerret |
2023-09-29
⋅
ESET Research
⋅
Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company CLOUDBURST LightlessCan miniBlindingCan sRDI |
2023-09-15
⋅
Migeel.sk
⋅
Reverse engineering natively-compiled .NET apps |
2023-08-23
⋅
Logpoint
⋅
Defending Against 8base: Uncovering Their Arsenal and Crafting Responses 8Base Phobos SmokeLoader SystemBC |
2023-07-24
⋅
M4lcode
⋅
Deep Analysis of Vidar Stealer Arkei Stealer Vidar |
2023-06-06
⋅
Apophis133
⋅
RedLine Technical Analysis Report RedLine Stealer |
2023-04-28
⋅
Twitter (@MichalKoczwara)
⋅
Tweet on hunting BRC4 infrastructure Brute Ratel C4 |
2023-04-13
⋅
GOV.PL
⋅
HALFRIG - Malware Analysis Report HALFRIG |
2023-04-13
⋅
GOV.PL
⋅
HALFRIG - Malware Analysis Report HALFRIG |
2023-02-02
⋅
0x0d4y
⋅
[Zero2Automated] Complete Custom Sample Challenge Analysis CruLoader |
2022-12-19
⋅
kienmanowar Blog
⋅
[Z2A]Bimonthly malware challege – Emotet (Back From the Dead) Emotet |
2022-12-19
⋅
kienmanowar Blog
⋅
[Z2A]Bimonthly malware challege – Emotet (Back From the Dead) Emotet |
2022-09-26
⋅
Palo Alto Networks Unit 42
⋅
Hunting for Unsigned DLLs to Find APTs PlugX Raspberry Robin Roshtyak |
2022-08-11
⋅
Group-IB
⋅
Challenge accepted Detecting MaliBot, a fresh Android banking trojan, with a Fraud Protection solution |
2022-08-01
⋅
Qualys
⋅
Here’s a Simple Script to Detect the Stealthy Nation-State BPFDoor BPFDoor |
2022-07-20
⋅
Symantec
⋅
LockBit: Ransomware Puts Servers in the Crosshairs LockBit |
2022-07-18
⋅
Palo Alto Networks Unit 42
⋅
Shallow Taurus FormerFirstRAT IsSpace NewCT PlugX Poison Ivy Tidepool DragonOK |