Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-09-07Twitter (@Intrisec)CTI Intrinsec
@online{intrinsec:20230907:tweets:c954acb, author = {CTI Intrinsec}, title = {{Tweets on Bumblebee campaign spreading via Html smuggling downloading RAR archive with European Central Bank PDF lure and folder containing Bumblebee EXE payload.}}, date = {2023-09-07}, organization = {Twitter (@Intrisec)}, url = {https://twitter.com/Intrinsec/status/1699779830294970856}, language = {English}, urldate = {2023-09-12} } Tweets on Bumblebee campaign spreading via Html smuggling downloading RAR archive with European Central Bank PDF lure and folder containing Bumblebee EXE payload.
BumbleBee
2023-02-14IntrinsecIntrinsec, CTI Intrinsec
@online{intrinsec:20230214:vicesociety:2dffe2e, author = {Intrinsec and CTI Intrinsec}, title = {{Vice-Society spreads its own ransomware}}, date = {2023-02-14}, organization = {Intrinsec}, url = {https://www.intrinsec.com/vice-society-spreads-its-own-ransomware/}, language = {English}, urldate = {2023-02-15} } Vice-Society spreads its own ransomware
HelloKitty PolyVice Zeppelin
2023-01-16IntrinsecIntrinsec
@online{intrinsec:20230116:proxynotshell:b9b864c, author = {Intrinsec}, title = {{ProxyNotShell – OWASSRF – Merry Xchange}}, date = {2023-01-16}, organization = {Intrinsec}, url = {https://www.intrinsec.com/proxynotshell-owassrf-merry-xchange/}, language = {English}, urldate = {2023-03-13} } ProxyNotShell – OWASSRF – Merry Xchange
Cobalt Strike SystemBC
2023-01-09IntrinsecIntrinsec, CTI Intrinsec
@online{intrinsec:20230109:emotet:202716f, author = {Intrinsec and CTI Intrinsec}, title = {{Emotet returns and deploys loaders}}, date = {2023-01-09}, organization = {Intrinsec}, url = {https://www.intrinsec.com/emotet-returns-and-deploys-loaders/}, language = {English}, urldate = {2023-08-14} } Emotet returns and deploys loaders
BumbleBee Emotet IcedID PHOTOLITE
2022-10-18IntrinsecIntrinsec, CERT Intrinsec
@online{intrinsec:20221018:apt27:1977039, author = {Intrinsec and CERT Intrinsec}, title = {{APT27 – One Year To Exfiltrate Them All: Intrusion In-Depth Analysis}}, date = {2022-10-18}, organization = {Intrinsec}, url = {https://www.intrinsec.com/apt27-analysis/}, language = {English}, urldate = {2022-11-07} } APT27 – One Year To Exfiltrate Them All: Intrusion In-Depth Analysis
HyperBro MimiKatz
2022-03-31IntrinsecIntrinsec
@techreport{intrinsec:20220331:highprofile:e629533, author = {Intrinsec}, title = {{High-Profile Data Theft Intrusion Set LAPSUS}}, date = {2022-03-31}, institution = {Intrinsec}, url = {https://www.intrinsec.com/wp-content/uploads/2022/03/INTRINSEC-LAPSUS-Intrusion-Set-20220324.pdf}, language = {English}, urldate = {2022-11-07} } High-Profile Data Theft Intrusion Set LAPSUS
2022-02-08IntrinsecMarvin Tachon
@online{tachon:20220208:annual:6500f88, author = {Marvin Tachon}, title = {{Annual Threat trends 2021}}, date = {2022-02-08}, organization = {Intrinsec}, url = {https://www.intrinsec.com/annual-threat-trends-2021/}, language = {English}, urldate = {2022-02-14} } Annual Threat trends 2021
2022-01-26IntrinsecIntrinsec
@online{intrinsec:20220126:alphv:5f751bd, author = {Intrinsec}, title = {{ALPHV ransomware gang analysis}}, date = {2022-01-26}, organization = {Intrinsec}, url = {https://www.intrinsec.com/alphv-ransomware-gang-analysis/}, language = {English}, urldate = {2022-11-07} } ALPHV ransomware gang analysis
BlackCat BlackCat
2022-01-26IntrinsecIntrinsec
@online{intrinsec:20220126:alphv:9f00db5, author = {Intrinsec}, title = {{ALPHV ransomware gang analysis}}, date = {2022-01-26}, organization = {Intrinsec}, url = {https://www.intrinsec.com/alphv-ransomware-gang-analysis}, language = {English}, urldate = {2022-02-01} } ALPHV ransomware gang analysis
BlackCat LockBit
2020-11-12IntrinsecJean Bichet
@online{bichet:20201112:egregor:1ac0eb1, author = {Jean Bichet}, title = {{Egregor – Prolock: Fraternal Twins ?}}, date = {2020-11-12}, organization = {Intrinsec}, url = {https://www.intrinsec.com/egregor-prolock/}, language = {English}, urldate = {2020-11-23} } Egregor – Prolock: Fraternal Twins ?
Egregor PwndLocker QakBot
2020-04-14IntrinsecJean Bichet
@online{bichet:20200414:deobfuscating:d7320ab, author = {Jean Bichet}, title = {{Deobfuscating and hunting for OSTAP, Trickbot’s dropper and best friend}}, date = {2020-04-14}, organization = {Intrinsec}, url = {https://www.intrinsec.com/deobfuscating-hunting-ostap/}, language = {English}, urldate = {2021-01-11} } Deobfuscating and hunting for OSTAP, Trickbot’s dropper and best friend
ostap TrickBot