Click here to download all references as Bib-File.•
| 2025-04-25
⋅
Twitter (@teamcymru_S2)
⋅
Tweet on North Korean Cyber Ops Leveraging Russian Infrastructure |
| 2024-12-20
⋅
Team Cymru
⋅
Jingle Shells: How Virtual Offices Enable a Facade of Legitimacy |
| 2024-04-04
⋅
Proofpoint
⋅
Latrodectus: This Spider Bytes Like Ice IcedID Latrodectus |
| 2024-03-05
⋅
Team Cymru
⋅
Coper / Octo - A Conductor for Mobile Mayhem… With Eight Limbs? Coper |
| 2023-08-07
⋅
Team Cymru
⋅
Visualizing Qakbot Infrastructure Part II: Uncharted Territory QakBot |
| 2023-07-28
⋅
Team Cymru
⋅
Inside the IcedID BackConnect Protocol (Part 2) IcedID |
| 2023-06-15
⋅
Team Cymru
⋅
Darth Vidar: The Aesir Strike Back Vidar |
| 2023-05-17
⋅
Team Cymru
⋅
Visualizing QakBot Infrastructure QakBot |
| 2023-04-19
⋅
Team Cymru
⋅
AllaKore(d) the SideCopy Train AllaKore |
| 2023-04-08
⋅
Team Cymru
⋅
Deriving Insight from Threat Actor Infrastructure Raccoon |
| 2023-04-04
⋅
Team Cymru
⋅
A Blog with NoName Dosia |
| 2023-03-16
⋅
Team Cymru
⋅
MoqHao Part 3: Recent Global Targeting Trends MoqHao |
| 2023-02-24
⋅
Team Cymru
⋅
Desde Chile con Malware (From Chile with Malware) IcedID PhotoLoader |
| 2023-01-19
⋅
Team Cymru
⋅
Darth Vidar: The Dark Side of Evolving Threat Infrastructure Vidar |
| 2022-12-21
⋅
Team Cymru
⋅
Inside the IcedID BackConnect Protocol IcedID |
| 2022-12-08
⋅
Team Cymru
⋅
Iranian Exploitation Activities Continue as of November 2022 |
| 2022-11-03
⋅
Team Cymru
⋅
Inside the V1 Raccoon Stealer’s Den Raccoon |
| 2022-10-07
⋅
Team Cymru
⋅
A Visualizza into Recent IcedID Campaigns: Reconstructing Threat Actor Metrics with Pure Signal™ Recon IcedID PhotoLoader |
| 2022-09-29
⋅
Team Cymru
⋅
Seychelles, Seychelles, on the C(2) Shore: An overview of a bulletproof hosting provider named ELITETEAM. Amadey Raccoon RedLine Stealer SmokeLoader STOP |
| 2022-09-05
⋅
Team Cymru
⋅
Mythic Case Study: Assessing Common Offensive Security Tools |