Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2024-02-21DCSOJiro Minier, Johann Aydinbas, Kritika Roy, Olivia Hayward
To Russia With Love: Assessing a KONNI-Backdoored Suspected Russian Consular Software Installer
Konni
2023-09-19Medium (@DCSO_CyTec)Johann Aydinbas
#ShortAndMalicious — DarkGate
DarkGate
2023-05-31Twitter (@jaydinbas)Johann Aydinbas
Tweet about C++ payload delivered via ISO
Unidentified 104
2023-05-17Medium (@DCSO_CyTec)Axel Wauer, Emilia Neuber, Jiro Minier, Johann Aydinbas, Kritika Roy
Andariel’s “Jupiter” malware and the case of the curious C2
Jupiter
2023-02-10DCSOAxel Wauer, Johann Aydinbas
#ShortAndMalicious — PikaBot and the Matanbuchus connection
Pikabot
2022-12-19Twitter (@jaydinbas)Johann Aydinbas
Twitter thread describing ISO drop for Kami
Kami
2022-11-16Medium (@DCSO_CyTec)Axel Wauer, Johann Aydinbas
HZ RAT goes China
HZ RAT
2022-11-08DCSOAxel Wauer, Johann Aydinbas
#ShortAndMalicious: StrelaStealer aims for mail credentials
StrelaStealer
2022-10-11Medium (@DCSO_CyTec)Axel Wauer, Denis Szadkowski, Johann Aydinbas
Tracking down Maggie
Maggie
2022-10-04Medium (@DCSO_CyTec)Axel Wauer, Johann Aydinbas
MSSQL, meet Maggie
Maggie
2022-05-23DCSOColin Murphy, Johann Aydinbas
A deal with the devil: Analysis of a recent Matanbuchus sample
Matanbuchus
2022-03-01Github (usualsuspect)Johann Aydinbas
Python script to decrypt embedded driver used in Daxin
Daxin
2021-06-25GdataFlorian Roth, Johann Aydinbas, Karsten Hahn, Takahiro Haruyama
Microsoft signed a malicious Netfilter rootkit
NetfilterRootkit
2019-05-02Usual Suspect REJohann Aydinbas
FormBook - Hiding in plain sight
Formbook