Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2025-05-16GdataKarsten Hahn
Printer company provided infected software downloads for half a year
SnipVex
2025-01-27Youtube (MalwareAnalysisForHedgehogs)Karsten Hahn
Malware Analysis - Binary Refinery URL extraction of Multi-Layered PoshLoader for LummaStealer
Lumma Stealer
2024-09-26GdataKarsten Hahn, Marius Benthin
BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell
BBtok
2024-06-12GdataAnna Lvova, Karsten Hahn
New backdoor BadSpace delivered by high-ranking infected websites
WarmCookie
2023-12-09Github (struppigel)Karsten Hahn
AST based GootLoader unpacker, C2 extractor and deobfuscator
GootLoader
2023-08-19Youtube (MalwareAnalysisForHedgehogs)Karsten Hahn
Malware Analysis - Agniane Stealer, Native Stub to .NET Unpacking
Cinoshi
2023-04-26Youtube (MalwareAnalysisForHedgehogs)Karsten Hahn
Malware Theory - Packer identifiers don"t tell you if a file is packed
2023-04-03Youtube (MalwareAnalysisForHedgehogs)Karsten Hahn
Malware Analysis - 3CX SmoothOperator ffmpeg.dll with Binary Ninja
3CX Backdoor
2022-11-25Github (struppigel)Karsten Hahn
Python script to decode NightHawk strings
Nighthawk
2022-09-21GdataKarsten Hahn
Identifying file manipulation in system files
2022-09-05Karsten Hahn
Icarus Stealer
Icarus
2022-07-15GdataKarsten Hahn
The real reason why malware detection is hard—and underestimated
2022-04-21GdataKarsten Hahn
Criminals provide Ginzo stealer for free, now it is gaining traction
Ginzo Stealer ZingoStealer
2022-03-24Twitter (@struppigel)Karsten Hahn
Tweet on Ginzo Stealer
Ginzo Stealer
2022-03-09Twitter (@struppigel)Karsten Hahn
Tweets detailing NominatusToxicBattery
NominatusToxicBattery
2022-03-08Twitter (@struppigel)Karsten Hahn
Tweet on KazyLoader
KazyLoader
2022-02-28Twitter (@struppigel)Karsten Hahn
Tweet on Gofing discovery
Gofing
2022-02-14GdataKarsten Hahn
Allcome clipbanker is a newcomer in underground forums
AllcomeClipper
2022-02-03GdataKarsten Hahn
QR codes on Twitter deliver malicious Chrome extension
Choziosi
2022-01-19GdataKarsten Hahn
Malware vaccines can prevent pandemics, yet are rarely used
Emotet STOP