Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2018-02-27Palo Alto Networks Unit 42Jeff White
@online{white:20180227:dissecting:4a4c07e, author = {Jeff White}, title = {{Dissecting Hancitor’s Latest 2018 Packer}}, date = {2018-02-27}, organization = {Palo Alto Networks Unit 42}, url = {https://researchcenter.paloaltonetworks.com/2018/02/unit42-dissecting-hancitors-latest-2018-packer/}, language = {English}, urldate = {2019-12-20} } Dissecting Hancitor’s Latest 2018 Packer
Hancitor
2017-09-25Palo Alto Networks Unit 42Jeff White
@online{white:20170925:analyzing:92167ce, author = {Jeff White}, title = {{Analyzing the Various Layers of AgentTesla’s Packing}}, date = {2017-09-25}, organization = {Palo Alto Networks Unit 42}, url = {https://researchcenter.paloaltonetworks.com/2017/09/unit42-analyzing-various-layers-agentteslas-packing/}, language = {English}, urldate = {2019-12-20} } Analyzing the Various Layers of AgentTesla’s Packing
Agent Tesla
2017-05-31ropgadget.comJeff White
@online{white:20170531:writing:1ad3f1b, author = {Jeff White}, title = {{Writing PCRE's for applied passive network defense [Emotet]}}, date = {2017-05-31}, organization = {ropgadget.com}, url = {http://ropgadget.com/posts/defensive_pcres.html}, language = {English}, urldate = {2020-03-06} } Writing PCRE's for applied passive network defense [Emotet]
Emotet
2016-08-30Palo Alto Networks Unit 42Jeff White
@online{white:20160830:pythons:10b7e3c, author = {Jeff White}, title = {{Pythons and Unicorns and Hancitor…Oh My! Decoding Binaries Through Emulation}}, date = {2016-08-30}, organization = {Palo Alto Networks Unit 42}, url = {https://researchcenter.paloaltonetworks.com/2016/08/unit42-pythons-and-unicorns-and-hancitoroh-my-decoding-binaries-through-emulation/}, language = {English}, urldate = {2019-12-20} } Pythons and Unicorns and Hancitor…Oh My! Decoding Binaries Through Emulation
2016-08-22Palo Alto Networks Unit 42Jeff White
@online{white:20160822:vb:7220081, author = {Jeff White}, title = {{VB Dropper and Shellcode for Hancitor Reveal New Techniques Behind Uptick}}, date = {2016-08-22}, organization = {Palo Alto Networks Unit 42}, url = {https://researchcenter.paloaltonetworks.com/2016/08/unit42-vb-dropper-and-shellcode-for-hancitor-reveal-new-techniques-behind-uptick/}, language = {English}, urldate = {2019-12-20} } VB Dropper and Shellcode for Hancitor Reveal New Techniques Behind Uptick
Hancitor
2016-02-25Palo Alto Networks Unit 42Jeff White
@online{white:20160225:keybase:676bd3f, author = {Jeff White}, title = {{KeyBase Threat Grows Despite Public Takedown: A Picture is Worth a Thousand Words}}, date = {2016-02-25}, organization = {Palo Alto Networks Unit 42}, url = {https://unit42.paloaltonetworks.com/keybase-threat-grows-despite-public-takedown-a-picture-is-worth-a-thousand-words/}, language = {English}, urldate = {2020-01-10} } KeyBase Threat Grows Despite Public Takedown: A Picture is Worth a Thousand Words
KeyBase