Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-11-21Avast DecodedJan Rubín
@online{rubn:20221121:vipersoftx:339e815, author = {Jan Rubín}, title = {{ViperSoftX: Hiding in System Logs and Spreading VenomSoftX}}, date = {2022-11-21}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janrubin/vipersoftx-hiding-in-system-logs-and-spreading-venomsoftx/}, language = {English}, urldate = {2022-11-25} } ViperSoftX: Hiding in System Logs and Spreading VenomSoftX
ViperSoftX
2022-04-07Avast DecodedPavel Novák, Jan Rubín
@online{novk:20220407:parrot:9c74f9b, author = {Pavel Novák and Jan Rubín}, title = {{Parrot TDS takes over web servers and threatens millions}}, date = {2022-04-07}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janrubin/parrot-tds-takes-over-web-servers-and-threatens-millions/}, language = {English}, urldate = {2022-04-08} } Parrot TDS takes over web servers and threatens millions
FAKEUPDATES Parrot TDS Parrot TDS WebShell NetSupportManager RAT
2021-12-01AvastJan Rubín, Jakub Kaloč
@online{rubn:20211201:toss:0b5f12e, author = {Jan Rubín and Jakub Kaloč}, title = {{Toss a Coin to your Helper (Part 2 of 2)}}, date = {2021-12-01}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/toss-a-coin-to-your-helper}, language = {English}, urldate = {2021-12-07} } Toss a Coin to your Helper (Part 2 of 2)
2021-10-12AvastJan Rubín, Jakub Kaloč
@online{rubn:20211012:king:068a3d8, author = {Jan Rubín and Jakub Kaloč}, title = {{The King is Dead, Long Live MyKings! (Part 1 of 2)}}, date = {2021-10-12}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/the-king-is-dead-long-live-mykings/}, language = {English}, urldate = {2021-10-25} } The King is Dead, Long Live MyKings! (Part 1 of 2)
MyKings Spreader
2021-02-03Avast DecodedJan Vojtěšek, Jan Rubín
@online{vojtek:20210203:backdoored:21906b8, author = {Jan Vojtěšek and Jan Rubín}, title = {{Backdoored Browser Extensions Hid Malicious Traffic in Analytics Requests}}, date = {2021-02-03}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janvojtesek/backdoored-browser-extensions-hid-malicious-traffic-in-analytics-requests/}, language = {English}, urldate = {2021-02-04} } Backdoored Browser Extensions Hid Malicious Traffic in Analytics Requests
2020-09-17Avast DecodedJan Rubín
@online{rubn:20200917:complex:e1b3abc, author = {Jan Rubín}, title = {{Complex obfuscation? Meh… (1/2)}}, date = {2020-09-17}, organization = {Avast Decoded}, url = {https://decoded.avast.io/janrubin/complex-obfuscation-meh/}, language = {English}, urldate = {2020-09-24} } Complex obfuscation? Meh… (1/2)
2020-05-20Avast DecodedDavid Jursa, Simi Musilova, Jan Rubín, Alexej Savčin
@online{jursa:20200520:ghostdns:43190d5, author = {David Jursa and Simi Musilova and Jan Rubín and Alexej Savčin}, title = {{GhostDNS Source Code Leaked}}, date = {2020-05-20}, organization = {Avast Decoded}, url = {https://decoded.avast.io/simonamusilova/ghostdns-source-code-leaked/}, language = {English}, urldate = {2020-05-23} } GhostDNS Source Code Leaked
2020-04-02AvastJan Rubín
@online{rubn:20200402:coviper:f06be6d, author = {Jan Rubín}, title = {{CoViper locking down computers during lockdown}}, date = {2020-04-02}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/coviper-locking-down-computers-during-lockdown/}, language = {English}, urldate = {2020-04-07} } CoViper locking down computers during lockdown
CoViper
2019-08-06AvastJan Rubín
@online{rubn:20190806:clipsa:81eb577, author = {Jan Rubín}, title = {{Clipsa – Multipurpose password stealer}}, date = {2019-08-06}, organization = {Avast}, url = {https://decoded.avast.io/janrubin/clipsa-multipurpose-password-stealer/}, language = {English}, urldate = {2020-01-13} } Clipsa – Multipurpose password stealer
Sysraw Stealer