Click here to download all references as Bib-File.
2023-05-17 ⋅ Group-IB ⋅ The distinctive rattle of APT SideWinder SideWinder |
2023-05-08 ⋅ cocomelonc ⋅ Malware analysis report: WinDealer (LuoYu Threat Group) WinDealer |
2023-05-08 ⋅ Blackberry ⋅ SideWinder Uses Server-side Polymorphism to Attack Pakistan Government Officials — and Is Now Targeting Turkey |
2023-04-24 ⋅ CoinDesk ⋅ U.S. Sanctions 3 North Koreans for Supporting Hacking Group Known for Crypto Thefts |
2023-01-05 ⋅ Check Point Research ⋅ Blindeagle Targeting Ecuador with Sharpened Tools |
2022-12-08 ⋅ ThreatFabric ⋅ Zombinder: new obfuscation service used by Ermac, now distributed next to desktop stealers ERMAC Xenomorph |
2022-11-04 ⋅ Github (hktalent) ⋅ Behinder Mem Shell Behinder |
2022-09-01 ⋅ Zscaler ⋅ No Honor Among Thieves - Prynt Stealer’s Backdoor Exposed DarkEye Prynt Stealer WorldWind |
2022-08-01 ⋅ Zscaler ⋅ Technical Analysis of Industrial Spy Ransomware Industrial Spy |
2022-07-20 ⋅ Qianxin ⋅ The Sidewinder (APT-Q-39) uses Google Play to spread an analysis of malicious Android software SideWinder |
2022-07-14 ⋅ Sophos ⋅ BlackCat ransomware attacks not merely a byproduct of bad luck BlackCat BlackCat |
2022-07-13 ⋅ Check Point ⋅ A Hit is made: Suspected India-based Sidewinder APT successfully cyber attacks Pakistan military focused targets Unidentified 093 (Sidewinder) |
2022-06-30 ⋅ Blackberry ⋅ Threat Thursday: China-Based APT Plays Auto-Updater Card to Deliver WinDealer Malware WinDealer Red Nue |
2022-06-02 ⋅ Kaspersky Labs ⋅ WinDealer dealing on the side WinDealer Red Nue |
2022-06-02 ⋅ Kaspersky Labs ⋅ WinDealer dealing on the side WinDealer |
2022-06-01 ⋅ Group-IB ⋅ SideWinder.AntiBot.Script Analysis of SideWinder's new infrastructure and tool that narrows their reach to Pakistan |
2022-05-18 ⋅ Weixin ⋅ filesyncshell.dll hijacked? APT-C-24 Sidewinder Briefing on the Latest Attack Activity |
2022-01-06 ⋅ VMRay ⋅ Malware Analysis Spotlight: XLoader’ Cross-platform Support Utilizing XBinder Xloader |
2021-11-18 ⋅ Sophos ⋅ New ransomware actor uses password-protected archives to bypass encryption protection |
2021-10-26 ⋅ JPCERT/CC ⋅ Malware WinDealer used by LuoYu Attack Group WinDealer Red Nue |