Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-06-16RiskIQJennifer Grob
@online{grob:20220616:riskiq:319bce7, author = {Jennifer Grob}, title = {{RiskIQ: New ManaTools Panel Identified}}, date = {2022-06-16}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/69dfdba2}, language = {English}, urldate = {2022-07-01} } RiskIQ: New ManaTools Panel Identified
2022-05-10RiskIQJennifer Grob
@online{grob:20220510:riskiq:e6dc6a0, author = {Jennifer Grob}, title = {{RiskIQ: VBScript Hosted on BlogSpot URL Deploys Malware Associated with NyanCat}}, date = {2022-05-10}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/0a8a0248}, language = {English}, urldate = {2022-05-17} } RiskIQ: VBScript Hosted on BlogSpot URL Deploys Malware Associated with NyanCat
2022-04-19RiskIQJennifer Grob
@online{grob:20220419:riskiq:7156e3c, author = {Jennifer Grob}, title = {{RiskIQ: Legitimate WordPress Site Hosts Malicious Content}}, date = {2022-04-19}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/3929ede0/description}, language = {English}, urldate = {2022-04-25} } RiskIQ: Legitimate WordPress Site Hosts Malicious Content
AsyncRAT
2022-04-18RiskIQJennifer Grob
@online{grob:20220418:riskiq:d5109f2, author = {Jennifer Grob}, title = {{RiskIQ: Trickbot Rickroll}}, date = {2022-04-18}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/04ec92f4}, language = {English}, urldate = {2022-04-20} } RiskIQ: Trickbot Rickroll
TrickBot
2022-03-18RiskIQJennifer Grob, RiskIQ
@online{grob:20220318:riskiq:3c630e5, author = {Jennifer Grob and RiskIQ}, title = {{RiskIQ: Fraudulent Website Attempts to Collect Donations in Support of Ukraine Humanitarian Fund (UHF)}}, date = {2022-03-18}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/c9a9e8a6}, language = {English}, urldate = {2022-03-22} } RiskIQ: Fraudulent Website Attempts to Collect Donations in Support of Ukraine Humanitarian Fund (UHF)
2022-03-16RiskIQJennifer Grob, RiskIQ
@online{grob:20220316:riskiq:be037c6, author = {Jennifer Grob and RiskIQ}, title = {{RiskIQ: Suspicious Domain Claiming Support for Ukraine Associated with Malware File}}, date = {2022-03-16}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/8f476ce5/indicators}, language = {English}, urldate = {2022-03-22} } RiskIQ: Suspicious Domain Claiming Support for Ukraine Associated with Malware File
2022-03-16RiskIQJennifer Grob, RiskIQ
@online{grob:20220316:riskiq:6615264, author = {Jennifer Grob and RiskIQ}, title = {{RiskIQ: Website Spoofed Ukrainian "Official site of the PrivatBank Charitable Foundation" to Skim Credit Card Data}}, date = {2022-03-16}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/57a3509b}, language = {English}, urldate = {2022-03-22} } RiskIQ: Website Spoofed Ukrainian "Official site of the PrivatBank Charitable Foundation" to Skim Credit Card Data
2022-03-02RiskIQJennifer Grob
@online{grob:20220302:riskiq:38b8181, author = {Jennifer Grob}, title = {{RiskIQ: Malware Linked to Upwork Post Seeking Content Writer for a "Newly Developed Application" Deploys DCRat}}, date = {2022-03-02}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/50c77491}, language = {English}, urldate = {2022-03-07} } RiskIQ: Malware Linked to Upwork Post Seeking Content Writer for a "Newly Developed Application" Deploys DCRat
DCRat
2022-03-01RiskIQJennifer Grob
@online{grob:20220301:riskiq:660957b, author = {Jennifer Grob}, title = {{RiskIQ: Fraudulent Website Spoofing UNHCR for Ukrainian Refugees Seeks Bitcoin Donations}}, date = {2022-03-01}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/1531a4e2}, language = {English}, urldate = {2022-03-07} } RiskIQ: Fraudulent Website Spoofing UNHCR for Ukrainian Refugees Seeks Bitcoin Donations
2021-11-17RiskIQJennifer Grob
@online{grob:20211117:aggah:67f2411, author = {Jennifer Grob}, title = {{Aggah Campaign Replaces Crypto Currency Addresses with Their Own}}, date = {2021-11-17}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/09514842}, language = {English}, urldate = {2021-11-18} } Aggah Campaign Replaces Crypto Currency Addresses with Their Own
2021-10-20RiskIQJennifer Grob
@online{grob:20211020:overview:f51c170, author = {Jennifer Grob}, title = {{Overview of Malware Hosted on Discord's Content Delivery Network}}, date = {2021-10-20}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/fe25847f}, language = {English}, urldate = {2021-10-26} } Overview of Malware Hosted on Discord's Content Delivery Network
2021-09-08RiskIQJennifer Grob
@online{grob:20210908:bulletproof:902e9f2, author = {Jennifer Grob}, title = {{Bulletproof Hosting Services: Investigating Flowspec}}, date = {2021-09-08}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/2a36a7d2/description}, language = {English}, urldate = {2021-09-10} } Bulletproof Hosting Services: Investigating Flowspec
Azorult Glupteba
2021-07-28RiskIQJennifer Grob, Jordan Herman
@online{grob:20210728:use:8287989, author = {Jennifer Grob and Jordan Herman}, title = {{Use of XAMPP Web Component to Identify Agent Tesla Infrastructure}}, date = {2021-07-28}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/40000d46}, language = {English}, urldate = {2021-07-29} } Use of XAMPP Web Component to Identify Agent Tesla Infrastructure
Agent Tesla
2021-06-30RiskIQJennifer Grob, Jordan Herman
@online{grob:20210630:bulletproof:5d71486, author = {Jennifer Grob and Jordan Herman}, title = {{Bulletproof Hosting Services: Investigating Media Land LLC}}, date = {2021-06-30}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/49db7be3}, language = {English}, urldate = {2021-07-02} } Bulletproof Hosting Services: Investigating Media Land LLC
2021-06-02RiskIQJennifer Grob
@online{grob:20210602:review:df29e01, author = {Jennifer Grob}, title = {{Review of Sysrv-hello Cryptjacking Botnet}}, date = {2021-06-02}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/98f391f9}, language = {English}, urldate = {2021-06-16} } Review of Sysrv-hello Cryptjacking Botnet
2021-05-20RiskIQJennifer Grob
@online{grob:20210520:analysis:1b7ae0b, author = {Jennifer Grob}, title = {{Analysis of Infrastructure used by DarkSide Affiliates}}, date = {2021-05-20}, organization = {RiskIQ}, url = {https://community.riskiq.com/article/fdf74f23}, language = {English}, urldate = {2021-05-26} } Analysis of Infrastructure used by DarkSide Affiliates
DarkSide