Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-05-03Minerva LabsNatalie Zargarov
@online{zargarov:20220503:new:f109a33, author = {Natalie Zargarov}, title = {{A new BluStealer Loader Uses Direct Syscalls to Evade EDRs}}, date = {2022-05-03}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/a-new-blustealer-loader-uses-direct-syscalls-to-evade-edrs}, language = {English}, urldate = {2022-05-05} } A new BluStealer Loader Uses Direct Syscalls to Evade EDRs
BluStealer
2022-03-28Minerva LabsNatalie Zargarov
@online{zargarov:20220328:suncrypt:123d4d5, author = {Natalie Zargarov}, title = {{SunCrypt Ransomware Gains New Capabilities in 2022}}, date = {2022-03-28}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/suncrypt-ransomware-gains-new-abilities-in-2022}, language = {English}, urldate = {2022-03-29} } SunCrypt Ransomware Gains New Capabilities in 2022
SunCrypt
2021-12-09Minerva LabsNatalie Zargarov
@online{zargarov:20211209:new:2875937, author = {Natalie Zargarov}, title = {{A new StrongPity variant hides behind Notepad++ installation}}, date = {2021-12-09}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/a-new-strongpity-variant-hides-behind-notepad-installation}, language = {English}, urldate = {2021-12-13} } A new StrongPity variant hides behind Notepad++ installation
StrongPity
2021-11-23Minerva LabsNatalie Zargarov
@online{zargarov:20211123:long:6d3da55, author = {Natalie Zargarov}, title = {{A Long List Of Arkei Stealer's Crypto Browser Wallets}}, date = {2021-11-23}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/a-long-list-of-arkei-stealers-browser-crypto-wallets}, language = {English}, urldate = {2022-01-12} } A Long List Of Arkei Stealer's Crypto Browser Wallets
Arkei Stealer
2021-11-09MinervaLabsMinerva Labs
@online{labs:20211109:new:411a8fd, author = {Minerva Labs}, title = {{A New DatopLoader Delivers QakBot Trojan}}, date = {2021-11-09}, organization = {MinervaLabs}, url = {https://blog.minerva-labs.com/a-new-datoploader-delivers-qakbot-trojan}, language = {English}, urldate = {2021-11-17} } A New DatopLoader Delivers QakBot Trojan
QakBot Squirrelwaffle
2021-09-23Minerva LabsMinerva Labs
@online{labs:20210923:vidar:36d9ecf, author = {Minerva Labs}, title = {{Vidar Stealer Evasion Arsenal}}, date = {2021-09-23}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/vidar-stealer-evasion-arsenal}, language = {English}, urldate = {2021-10-05} } Vidar Stealer Evasion Arsenal
Vidar
2021-08-31Minerva LabsMinerva Labs
@online{labs:20210831:blackmatter:26abef6, author = {Minerva Labs}, title = {{BlackMatter - The New Star Of Ransomware}}, date = {2021-08-31}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/blackmatter}, language = {English}, urldate = {2021-09-12} } BlackMatter - The New Star Of Ransomware
BlackMatter
2021-08-26Minerva LabsMinerva Labs
@online{labs:20210826:become:f38fe74, author = {Minerva Labs}, title = {{Become A VIP Victim With New Discord Distributed Malware}}, date = {2021-08-26}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/become-a-vip-victim-with-new-discord-distributed-malware}, language = {English}, urldate = {2021-09-12} } Become A VIP Victim With New Discord Distributed Malware
BlackNET RAT RedLine Stealer
2021-08-09Minerva LabsMinerva Labs
@online{labs:20210809:thwarting:cff4148, author = {Minerva Labs}, title = {{Thwarting Jupyter Stealer}}, date = {2021-08-09}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/new-iocs-of-jupyter-stealer}, language = {English}, urldate = {2021-12-17} } Thwarting Jupyter Stealer
solarmarker
2021-07-22MinervaMinerva Labs
@online{labs:20210722:taurus:1c48969, author = {Minerva Labs}, title = {{Taurus Loader: User-Guided Infection}}, date = {2021-07-22}, organization = {Minerva}, url = {https://blog.minerva-labs.com/taurus-user-guided-infection}, language = {English}, urldate = {2021-07-26} } Taurus Loader: User-Guided Infection
TerraTV
2021-07-07MinervaLabsMinerva Labs
@online{labs:20210707:crackonosh:e1190c0, author = {Minerva Labs}, title = {{Crackonosh - The Hidden Crypto Mining Malware}}, date = {2021-07-07}, organization = {MinervaLabs}, url = {https://blog.minerva-labs.com/crackonosh-the-hidden-crypto-mining-malware}, language = {English}, urldate = {2021-09-12} } Crackonosh - The Hidden Crypto Mining Malware
2021-06-21Minerva LabsMinerva Labs
@online{labs:20210621:sload:523f242, author = {Minerva Labs}, title = {{Sload Targeting Europe Again}}, date = {2021-06-21}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/sload-targeting-europe-again}, language = {English}, urldate = {2021-06-22} } Sload Targeting Europe Again
sLoad
2021-04-27Minerva LabsMinerva Labs
@online{labs:20210427:redline:f60a1c6, author = {Minerva Labs}, title = {{RedLine Stealer Masquerades as Telegram Installer}}, date = {2021-04-27}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/redline-stealer-masquerades-as-telegram-installer}, language = {English}, urldate = {2021-05-04} } RedLine Stealer Masquerades as Telegram Installer
RedLine Stealer
2021-04-07MinervaMinerva Labs
@online{labs:20210407:icedid:d178d16, author = {Minerva Labs}, title = {{IcedID - A New Threat In Office Attachments}}, date = {2021-04-07}, organization = {Minerva}, url = {https://blog.minerva-labs.com/icedid-maas}, language = {English}, urldate = {2021-04-09} } IcedID - A New Threat In Office Attachments
IcedID
2021-02-25MinervaMinerva Labs
@online{labs:20210225:preventing:c968dbc, author = {Minerva Labs}, title = {{Preventing AgentTelsa Infiltration}}, date = {2021-02-25}, organization = {Minerva}, url = {https://blog.minerva-labs.com/preventing-agenttesla}, language = {English}, urldate = {2021-02-25} } Preventing AgentTelsa Infiltration
Agent Tesla
2021-01-12Minerva LabsMinervaLabs
@online{minervalabs:20210112:slamming:89461b1, author = {MinervaLabs}, title = {{Slamming The Backdoor On BazarLoader}}, date = {2021-01-12}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/slamming-the-backdoor-on-bazarloader}, language = {English}, urldate = {2021-01-21} } Slamming The Backdoor On BazarLoader
BazarBackdoor
2020-12-07Minerva LabsTom Roter
@online{roter:20201207:egregor:2d3dced, author = {Tom Roter}, title = {{Egregor Ransomware - An In-Depth Analysis}}, date = {2020-12-07}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/egregor-ransomware-an-in-depth-analysis}, language = {English}, urldate = {2020-12-09} } Egregor Ransomware - An In-Depth Analysis
Egregor Maze Sekhmet
2020-11-18Minerva LabsEddy Bobritsky
@online{bobritsky:20201118:stopping:e5c486b, author = {Eddy Bobritsky}, title = {{Stopping BuerLoader With Minerva Lab's Hostile Environment Simulation module}}, date = {2020-11-18}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/stopping-buerloader}, language = {English}, urldate = {2020-11-19} } Stopping BuerLoader With Minerva Lab's Hostile Environment Simulation module
Buer
2019-03-11MinervaMinerva Labs
@online{labs:20190311:attackers:013804a, author = {Minerva Labs}, title = {{Attackers Insert Themselves into the Email Conversation to Spread Malware}}, date = {2019-03-11}, organization = {Minerva}, url = {https://blog.minerva-labs.com/attackers-insert-themselves-into-the-email-conversation-to-spread-malware}, language = {English}, urldate = {2020-01-08} } Attackers Insert Themselves into the Email Conversation to Spread Malware
ISFB
2019-01-28Minerva LabsAsaf Aprozper, Gal Bitensky
@online{aprozper:20190128:azorult:78563e2, author = {Asaf Aprozper and Gal Bitensky}, title = {{AZORult: Now, as A Signed “Google Update”}}, date = {2019-01-28}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/azorult-now-as-a-signed-google-update}, language = {English}, urldate = {2019-12-04} } AZORult: Now, as A Signed “Google Update”
Azorult