Click here to download all references as Bib-File.
2023-08-30 ⋅ Medium walmartglobaltech ⋅ Gazavat / Expiro DMSniff connection and DGA analysis DMSniff Expiro |
2023-07-18 ⋅ Medium walmartglobaltech ⋅ NemesisProject Nemesis |
2023-05-09 ⋅ Medium walmartglobaltech ⋅ MetaStealer string decryption and DGA overview MetaStealer |
2023-03-10 ⋅ Medium walmartglobaltech ⋅ From Royal With Love Cobalt Strike Conti PLAY Royal Ransom Somnia |
2023-02-24 ⋅ Medium walmartglobaltech ⋅ Qbot testing malvertising campaigns? QakBot |
2022-10-25 ⋅ Medium walmartglobaltech ⋅ Brute Ratel Config Decoding update Brute Ratel C4 |
2022-09-30 ⋅ Medium walmartglobaltech ⋅ Diavol resurfaces Diavol |
2022-08-11 ⋅ Medium walmartglobaltech ⋅ State of the Remote Access Tools, Part 1 |
2022-08-09 ⋅ Medium walmartglobaltech ⋅ Pivoting on a SharpExt to profile Kimusky panels for great good Kimsuky |
2022-08-04 ⋅ Medium walmartglobaltech ⋅ IcedID leverages PrivateLoader IcedID PrivateLoader |
2022-06-02 ⋅ Twitter (@sysopfb) ⋅ Tweets on UpdateAgent - GolangVersion UpdateAgent |
2022-05-25 ⋅ Medium walmartglobaltech ⋅ SocGholish Campaigns and Initial Access Kit FAKEUPDATES Blister Cobalt Strike NetSupportManager RAT |
2022-04-15 ⋅ Medium walmartglobaltech ⋅ Revisiting BatLoader C2 structure BATLOADER |
2022-03-28 ⋅ Medium walmartglobaltech ⋅ CobaltStrike UUID stager Cobalt Strike |
2022-03-10 ⋅ Medium walmartglobaltech ⋅ Diavol the Enigma of Ransomware Diavol |
2022-03-04 ⋅ Medium walmartglobaltech ⋅ SystemBC, PowerShell version SystemBC |
2022-02-14 ⋅ Medium walmartglobaltech ⋅ PrivateLoader to Anubis Loader Anubis Loader PrivateLoader |
2022-02-01 ⋅ Medium walmartglobaltech ⋅ Sugar Ransomware, a new RaaS Sugar |
2022-01-11 ⋅ Medium walmartglobaltech ⋅ Signed DLL campaigns as a service BATLOADER Cobalt Strike ISFB Zloader |
2021-10-14 ⋅ Medium walmartglobaltech ⋅ Investigation into the state of NIM malware Part 2 Cobalt Strike NimGrabber Nimrev Unidentified 088 (Nim Ransomware) |