Click here to download all references as Bib-File.•
| 2025-01-07
⋅
SANS ISC
⋅
PacketCrypt Classic Cryptocurrency Miner on PHP Servers |
| 2025-01-03
⋅
SANS ISC
⋅
SwaetRAT Delivery Through Python SwaetRAT |
| 2024-02-29
⋅
SANS ISC
⋅
Dissecting DarkGate: Modular Malware Delivery and Persistence as a Service DarkGate |
| 2024-01-30
⋅
ASEC
⋅
Trigona Ransomware Threat Actor Uses Mimic Ransomware Trigona |
| 2023-12-28
⋅
AhnLab
⋅
Trend Analysis on Kimsuky Group’s Attacks Using AppleSeed AlphaSeed Appleseed |
| 2023-11-01
⋅
SANS ISC
⋅
Malware Dropped Through a ZPAQ Archive |
| 2023-09-11
⋅
AhnLab
⋅
BlueShell Used in APT Attacks Against Korean and Thai Targets BlueShell Sliver Dalbit |
| 2023-09-05
⋅
⋅
AhnLab
⋅
BlueShell malware used in APT attacks targeting Korea and Thailand BlueShell SparkRAT |
| 2023-09-04
⋅
AhnLab
⋅
CHM Malware Using Fukushima Contaminated Water Discharge: RedEyes (ScarCruft) |
| 2023-08-31
⋅
AhnLab
⋅
Analysis of Andariel’s New Attack Activities Andardoor BlackRemote Tiger RAT Volgmer |
| 2023-08-22
⋅
AhnLab
⋅
Analysis of APT Attack Cases Targeting Web Services of Korean Corporations Ladon Meterpreter MimiKatz Dalbit |
| 2023-07-28
⋅
YouTube (SANS Cyber Defense)
⋅
Drop It Like It's Qbot: Separating malicious droppers, loaders, and crypters from their payloads CloudEyE QakBot |
| 2023-06-28
⋅
⋅
AhnLab
⋅
Kimsuky Attack Group Abusing Chrome Remote Desktop Appleseed |
| 2023-05-30
⋅
SANS ISC
⋅
Malspam pushes ModiLoader (DBatLoader) infection for Remcos RAT DBatLoader |
| 2023-04-12
⋅
SANS ISC
⋅
Recent IcedID (Bokbot) activity IcedID |
| 2023-03-09
⋅
ASEC
⋅
PlugX Malware Being Distributed via Vulnerability Exploitation PlugX |
| 2023-01-18
⋅
SANS ISC
⋅
Malicious Google Ad --> Fake Notepad++ Page --> Aurora Stealer malware Aurora Stealer |
| 2022-12-22
⋅
AhnLab
⋅
Nitol DDoS Malware Installing Amadey Bot Amadey Nitol |
| 2022-12-18
⋅
SANS ISC
⋅
Infostealer Malware with Double Extension Agent Tesla |
| 2022-11-21
⋅
Risky.biz
⋅
Risky Biz News: Cyber Partisans hack and disrupt Kremlin censor Cyber Partisans |