Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-08-31Rapid7 LabsNatalie Zargarov, Thomas Elkins, Evan McCann, Tyler McGraw
@online{zargarov:20230831:fake:4b8ef57, author = {Natalie Zargarov and Thomas Elkins and Evan McCann and Tyler McGraw}, title = {{Fake Update Utilizes New IDAT Loader To Execute StealC and Lumma Infostealers}}, date = {2023-08-31}, organization = {Rapid7 Labs}, url = {https://www.rapid7.com/blog/post/2023/08/31/fake-update-utilizes-new-idat-loader-to-execute-stealc-and-lumma-infostealers/}, language = {English}, urldate = {2023-09-04} } Fake Update Utilizes New IDAT Loader To Execute StealC and Lumma Infostealers
FAKEUPDATES Amadey IDAT Loader Lumma Stealer SectopRAT
2023-02-13Minerva LabsNatalie Zargarov
@online{zargarov:20230213:beepin:d15807c, author = {Natalie Zargarov}, title = {{Beepin’ Out of the Sandbox: Analyzing a New, Extremely Evasive Malware}}, date = {2023-02-13}, organization = {Minerva Labs}, url = {https://minerva-labs.com/blog/beepin-out-of-the-sandbox-analyzing-a-new-extremely-evasive-malware/}, language = {English}, urldate = {2023-02-21} } Beepin’ Out of the Sandbox: Analyzing a New, Extremely Evasive Malware
Pikabot
2022-12-29Minerva LabsNatalie Zargarov
@online{zargarov:20221229:new:8fc6643, author = {Natalie Zargarov}, title = {{New CatB Ransomware Employs 2-Year Old DLL Hijacking Technique To Evade Detection}}, date = {2022-12-29}, organization = {Minerva Labs}, url = {https://minerva-labs.com/blog/new-catb-ransomware-employs-2-year-old-dll-hijacking-technique-to-evade-detection/}, language = {English}, urldate = {2023-01-04} } New CatB Ransomware Employs 2-Year Old DLL Hijacking Technique To Evade Detection
CatB
2022-07-10Minerva LabsNatalie Zargarov
@online{zargarov:20220710:lockbit:98f59a8, author = {Natalie Zargarov}, title = {{Lockbit 3.0 AKA Lockbit Black is here, with a new icon, new ransom note, new wallpaper, but less evasiveness?}}, date = {2022-07-10}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/lockbit-3.0-aka-lockbit-black-is-here-with-a-new-icon-new-ransom-note-new-wallpaper-but-less-evasiveness}, language = {English}, urldate = {2022-07-15} } Lockbit 3.0 AKA Lockbit Black is here, with a new icon, new ransom note, new wallpaper, but less evasiveness?
LockBit
2022-05-03Minerva LabsNatalie Zargarov
@online{zargarov:20220503:new:f109a33, author = {Natalie Zargarov}, title = {{A new BluStealer Loader Uses Direct Syscalls to Evade EDRs}}, date = {2022-05-03}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/a-new-blustealer-loader-uses-direct-syscalls-to-evade-edrs}, language = {English}, urldate = {2022-05-05} } A new BluStealer Loader Uses Direct Syscalls to Evade EDRs
BluStealer
2022-03-28Minerva LabsNatalie Zargarov
@online{zargarov:20220328:suncrypt:123d4d5, author = {Natalie Zargarov}, title = {{SunCrypt Ransomware Gains New Capabilities in 2022}}, date = {2022-03-28}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/suncrypt-ransomware-gains-new-abilities-in-2022}, language = {English}, urldate = {2022-03-29} } SunCrypt Ransomware Gains New Capabilities in 2022
SunCrypt
2022-01-03MinervaLabsNatalie Zargarov
@online{zargarov:20220103:malicious:23d7ba8, author = {Natalie Zargarov}, title = {{Malicious Telegram Installer Drops Purple Fox Rootkit}}, date = {2022-01-03}, organization = {MinervaLabs}, url = {https://blog.minerva-labs.com/malicious-telegram-installer-drops-purple-fox-rootkit}, language = {English}, urldate = {2022-01-06} } Malicious Telegram Installer Drops Purple Fox Rootkit
PurpleFox
2021-12-09Minerva LabsNatalie Zargarov
@online{zargarov:20211209:new:2875937, author = {Natalie Zargarov}, title = {{A new StrongPity variant hides behind Notepad++ installation}}, date = {2021-12-09}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/a-new-strongpity-variant-hides-behind-notepad-installation}, language = {English}, urldate = {2021-12-13} } A new StrongPity variant hides behind Notepad++ installation
StrongPity
2021-11-23Minerva LabsNatalie Zargarov
@online{zargarov:20211123:long:6d3da55, author = {Natalie Zargarov}, title = {{A Long List Of Arkei Stealer's Crypto Browser Wallets}}, date = {2021-11-23}, organization = {Minerva Labs}, url = {https://blog.minerva-labs.com/a-long-list-of-arkei-stealers-browser-crypto-wallets}, language = {English}, urldate = {2022-01-12} } A Long List Of Arkei Stealer's Crypto Browser Wallets
Arkei Stealer
2021-11-02MinervaNatalie Zargarov
@online{zargarov:20211102:underminer:f03f426, author = {Natalie Zargarov}, title = {{Underminer Exploit Kit: The More You Check The More Evasive You Become}}, date = {2021-11-02}, organization = {Minerva}, url = {https://blog.minerva-labs.com/underminer-exploit-kit-the-more-you-check-the-more-evasive-you-become}, language = {English}, urldate = {2021-11-03} } Underminer Exploit Kit: The More You Check The More Evasive You Become
Amadey Oski Stealer RedLine Stealer UnderminerEK