Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-08-23StairwellSilas Cutler
@online{cutler:20230823:akira:a29f423, author = {Silas Cutler}, title = {{Akira: Pulling on the chains of ransomware}}, date = {2023-08-23}, organization = {Stairwell}, url = {https://stairwell.com/resources/akira-pulling-on-the-chains-of-ransomware/}, language = {English}, urldate = {2023-08-25} } Akira: Pulling on the chains of ransomware
Akira
2022-07-06StairwellSilas Cutler
@techreport{cutler:20220706:maui:1d2ddc2, author = {Silas Cutler}, title = {{Maui Ransomware}}, date = {2022-07-06}, institution = {Stairwell}, url = {https://stairwell.com/wp-content/uploads/2022/07/Stairwell-Threat-Report-Maui-Ransomware.pdf}, language = {English}, urldate = {2022-07-06} } Maui Ransomware
Maui Ransomware
2022-04-27StairwellSteve Miller, Silas Cutler
@techreport{miller:20220427:origin:2e68a5f, author = {Steve Miller and Silas Cutler}, title = {{The origin story of APT32 macros: The StrikeSuit Gift that keeps giving}}, date = {2022-04-27}, institution = {Stairwell}, url = {https://stairwell.com/wp-content/uploads/2022/04/Stairwell-threat-report-The-origin-of-APT32-macros.pdf}, language = {English}, urldate = {2022-05-04} } The origin story of APT32 macros: The StrikeSuit Gift that keeps giving
2022-04-27StairwellSteve Miller, Silas Cutler
@techreport{miller:20220427:origin:1fbc10e, author = {Steve Miller and Silas Cutler}, title = {{The origin story of APT32 macros: The StrikeSuit Gi}}, date = {2022-04-27}, institution = {Stairwell}, url = {https://assets.stairwell.com/hubfs/Marketing-Assets/Stairwell-threat-report-The-origin-of-APT32-macros.pdf}, language = {English}, urldate = {2023-09-11} } The origin story of APT32 macros: The StrikeSuit Gi
StrikeSuit Gift
2022-04-21StairwellSilas Cutler
@techreport{cutler:20220421:inkstained:cc446df, author = {Silas Cutler}, title = {{The ink-stained trail of GOLDBACKDOOR}}, date = {2022-04-21}, institution = {Stairwell}, url = {https://stairwell.com/wp-content/uploads/2022/04/Stairwell-threat-report-The-ink-stained-trail-of-GOLDBACKDOOR.pdf}, language = {English}, urldate = {2022-04-29} } The ink-stained trail of GOLDBACKDOOR
GOLDBACKDOOR
2022-04-14Twitter (@silascutler)Silas Cutler
@online{cutler:20220414:sample:06de069, author = {Silas Cutler}, title = {{Tweet on sample discovery for potential INCONTROLLER}}, date = {2022-04-14}, organization = {Twitter (@silascutler)}, url = {https://twitter.com/silascutler/status/1514366443277766656}, language = {English}, urldate = {2023-03-24} } Tweet on sample discovery for potential INCONTROLLER
INCONTROLLER
2022-04-12Twitter (@silascutler)Silas Cutler
@online{cutler:20220412:analysis:561c2a2, author = {Silas Cutler}, title = {{Tweet on analysis of CADDYWIPER used alongside with INDUSTROYER2}}, date = {2022-04-12}, organization = {Twitter (@silascutler)}, url = {https://twitter.com/silascutler/status/1513870210398363651}, language = {English}, urldate = {2022-05-25} } Tweet on analysis of CADDYWIPER used alongside with INDUSTROYER2
CaddyWiper INDUSTROYER2
2022-03-09Twitter (@silascutler)Silas Cutler
@online{cutler:20220309:hermeticwizards:3cd717d, author = {Silas Cutler}, title = {{Tweet on HermeticWizard's self-spreading mechanism}}, date = {2022-03-09}, organization = {Twitter (@silascutler)}, url = {https://twitter.com/silascutler/status/1501668345640366091}, language = {English}, urldate = {2022-03-10} } Tweet on HermeticWizard's self-spreading mechanism
HermeticWizard
2022-01-18StairwellSilas Cutler
@online{cutler:20220118:whispers:c986974, author = {Silas Cutler}, title = {{Whispers in the noise}}, date = {2022-01-18}, organization = {Stairwell}, url = {https://stairwell.com/news/whispers-in-the-noise-microsoft-ukraine-whispergate/}, language = {English}, urldate = {2022-01-19} } Whispers in the noise
WhisperGate
2021-01-14Silas Cutler's BlogSilas Cutler
@online{cutler:20210114:killed:4894029, author = {Silas Cutler}, title = {{Killed In Translation}}, date = {2021-01-14}, organization = {Silas Cutler's Blog}, url = {https://silascutler.com/2021/01/14/KilledInTranslation/}, language = {English}, urldate = {2023-04-18} } Killed In Translation
2019-11-16Silas Cutler's BlogSilas Cutler
@online{cutler:20191116:fresh:871567d, author = {Silas Cutler}, title = {{Fresh PlugX October 2019}}, date = {2019-11-16}, organization = {Silas Cutler's Blog}, url = {https://silascutler.blogspot.com/2019/11/fresh-plugx-october-2019.html}, language = {English}, urldate = {2020-01-07} } Fresh PlugX October 2019
PlugX
2019-05-15ChronicleSilas Cutler, Juan Andrés Guerrero-Saade
@online{cutler:20190515:winnti:269a852, author = {Silas Cutler and Juan Andrés Guerrero-Saade}, title = {{Winnti: More than just Windows and Gates}}, date = {2019-05-15}, organization = {Chronicle}, url = {https://medium.com/chronicle-blog/winnti-more-than-just-windows-and-gates-e4f03436031a}, language = {English}, urldate = {2019-10-14} } Winnti: More than just Windows and Gates
Winnti APT41
2019-04-09Chronicle SecurityJuan Andrés Guerrero-Saade, Silas Cutler
@techreport{guerrerosaade:20190409:flame:4ce4c10, author = {Juan Andrés Guerrero-Saade and Silas Cutler}, title = {{Flame 2.0: Risen from the Ashes}}, date = {2019-04-09}, institution = {Chronicle Security}, url = {https://github.com/juanandresgs/papers/raw/master/Flame%202.0%20Risen%20from%20the%20Ashes.pdf}, language = {English}, urldate = {2022-11-18} } Flame 2.0: Risen from the Ashes
Flame
2019-04-09Chronicle SecurityJuan Andrés Guerrero-Saade, Silas Cutler
@techreport{guerrerosaade:20190409:oldest:062ea25, author = {Juan Andrés Guerrero-Saade and Silas Cutler}, title = {{The Oldest Stuxnet Component Dials Up}}, date = {2019-04-09}, institution = {Chronicle Security}, url = {https://storage.googleapis.com/chronicle-research/STUXSHOP%20Stuxnet%20Dials%20In%20.pdf}, language = {English}, urldate = {2019-12-04} } The Oldest Stuxnet Component Dials Up
FlowerShop Stuxnet