Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-08-20TEAMT5TeamT5
@online{teamt5:20210820:see:815321b, author = {TeamT5}, title = {{See REvil again?! See how hackers use the same encryption ransomware program REvil to annihilate the attack evidence}}, date = {2021-08-20}, organization = {TEAMT5}, url = {https://teamt5.org/tw/posts/revil-dll-sideloading-technique-used-by-other-hackers/}, language = {Chinese}, urldate = {2021-08-31} } See REvil again?! See how hackers use the same encryption ransomware program REvil to annihilate the attack evidence
REvil
2021-07-21TEAMT5Tom, Peter, Jason3e7
@online{tom:20210721:le:ce23918, author = {Tom and Peter and Jason3e7}, title = {{"Le" is not tired of this, IE is really naughty}}, date = {2021-07-21}, organization = {TEAMT5}, url = {https://teamt5.org/tw/posts/internet-explorer-the-vulnerability-ridden-browser/}, language = {Chinese}, urldate = {2021-08-30} } "Le" is not tired of this, IE is really naughty
Magniber
2021-06-11TEAMT5Linda Kuo, Zih-Cing Liao
@techreport{kuo:20210611:story:897e55c, author = {Linda Kuo and Zih-Cing Liao}, title = {{Story of the ‘Phisherman’ -Dissecting Phishing Techniques of CloudDragon APT (slides)}}, date = {2021-06-11}, institution = {TEAMT5}, url = {https://conference.hitb.org/hitbsecconf2021ams/materials/D2T1%20-%20The%20Phishermen%20-%20Dissecting%20Phishing%20Techniques%20of%20CloudDragon%20APT%20-%20Linda%20Kuo%20&Zih-Cing%20Liao%20.pdf}, language = {English}, urldate = {2021-06-22} } Story of the ‘Phisherman’ -Dissecting Phishing Techniques of CloudDragon APT (slides)
Appleseed BabyShark
2021-06-02TEAMT5TeamT5
@online{teamt5:20210602:introducing:e0f8171, author = {TeamT5}, title = {{Introducing The Most Profitable Ransomware REvil}}, date = {2021-06-02}, organization = {TEAMT5}, url = {https://teamt5.org/en/posts/introducing-the-most-profitable-ransomware-revil/}, language = {English}, urldate = {2021-06-09} } Introducing The Most Profitable Ransomware REvil
Gandcrab REvil
2021-05-10TEAMT5Charles Li
@online{li:20210510:threat:bcb06cf, author = {Charles Li}, title = {{APT Threat Landscape of Taiwan in 2020}}, date = {2021-05-10}, organization = {TEAMT5}, url = {https://teamt5.org/en/posts/apt-threat-landscape-of-taiwan-in-2020/}, language = {English}, urldate = {2021-05-25} } APT Threat Landscape of Taiwan in 2020
2021-05-07TEAMT5Jhih-Lin Kuo, Zih-Cing Liao
@techreport{kuo:20210507:we:cd620c1, author = {Jhih-Lin Kuo and Zih-Cing Liao}, title = {{"We Are About to Land": How CloudDragon Turns a Nightmare Into Reality}}, date = {2021-05-07}, institution = {TEAMT5}, url = {https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Kuo-We-Are-About-To-Land-How-CloudDragon-Turns-A-Nightmare-Into-Reality.pdf}, language = {English}, urldate = {2021-09-14} } "We Are About to Land": How CloudDragon Turns a Nightmare Into Reality
FlowerPower Appleseed BabyShark GoldDragon NavRAT
2021-05-07TEAMT5Aragorn Tseng, Charles Li
@techreport{tseng:20210507:mem2img:494799d, author = {Aragorn Tseng and Charles Li}, title = {{Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network}}, date = {2021-05-07}, institution = {TEAMT5}, url = {https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Tseng-Mem2Img-Memory-Resident-Malware-Detection-via-Convolution-Neural-Network.pdf}, language = {English}, urldate = {2021-09-12} } Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
Cobalt Strike PlugX Waterbear
2021-01-13TEAMT5TeamT5
@online{teamt5:20210113:oracle:4eb3e85, author = {TeamT5}, title = {{年度最慘漏洞!深入探究 Oracle WebLogic CVE-2020-14882}}, date = {2021-01-13}, organization = {TEAMT5}, url = {https://teamt5.org/tw/posts/most-epic-fail-vulnerability-research-on-oracle-weblogic-cve-2020-14882}, language = {Chinese (Traditional)}, urldate = {2021-03-31} } 年度最慘漏洞!深入探究 Oracle WebLogic CVE-2020-14882
2020-12-22TEAMT5TeamT5
@online{teamt5:20201222:macos:d0657a9, author = {TeamT5}, title = {{macOS 用戶當心!北韓駭客 Lazarus 將目標瞄準虛擬貨幣交易用戶}}, date = {2020-12-22}, organization = {TEAMT5}, url = {https://teamt5.org/tw/posts/north-korea-linked-lazarus-apt-uses-a-macos-malware-in-cryptocurrency-exchange-attack/}, language = {Chinese (Traditional)}, urldate = {2021-03-31} } macOS 用戶當心!北韓駭客 Lazarus 將目標瞄準虛擬貨幣交易用戶
2020-08-19TEAMT5TeamT5
@online{teamt5:20200819:0819:e955419, author = {TeamT5}, title = {{調查局 08/19 公布中國對台灣政府機關駭侵事件說明}}, date = {2020-08-19}, organization = {TEAMT5}, url = {https://teamt5.org/tw/posts/mjib-holds-briefing-on-chinese-hackers-attacks-on-taiwanese-government-agencies/}, language = {Chinese}, urldate = {2021-05-03} } 調查局 08/19 公布中國對台灣政府機關駭侵事件說明
Cobalt Strike Waterbear
2020-05-01Macnica NetworksTeamT5, Macnica Networks
@techreport{teamt5:20200501:cyber:70c9cbc, author = {TeamT5 and Macnica Networks}, title = {{Cyber Espionage Tradecraft in the Real World Adversaries targeting Japan in the second half of 2019}}, date = {2020-05-01}, institution = {Macnica Networks}, url = {https://www.macnica.net/pdf/mpressioncss_ta_report_2019_4_en.pdf}, language = {English}, urldate = {2021-02-26} } Cyber Espionage Tradecraft in the Real World Adversaries targeting Japan in the second half of 2019
TSCookie LODEINFO
2020-04-15TEAMT5TeamT5
@online{teamt5:20200415:huapi:c45f871, author = {TeamT5}, title = {{中國駭客 HUAPI 的惡意後門程式 BiFrost 分析}}, date = {2020-04-15}, organization = {TEAMT5}, url = {https://teamt5.org/tw/posts/technical-analysis-on-backdoor-bifrost-of-the-Chinese-apt-group-huapi/}, language = {Chinese (Traditional)}, urldate = {2021-03-31} } 中國駭客 HUAPI 的惡意後門程式 BiFrost 分析
Bifrost
2020-01-14TEAMT5CiYi Yu, Aragorn Tseng
@techreport{yu:20200114:evil:20b2d83, author = {CiYi Yu and Aragorn Tseng}, title = {{Evil Hidden in Shellcode: The Evolution of Malware DBGPRINT}}, date = {2020-01-14}, institution = {TEAMT5}, url = {https://jsac.jpcert.or.jp/archive/2020/pdf/JSAC2020_2_ycy-aragorn_en.pdf}, language = {English}, urldate = {2021-04-21} } Evil Hidden in Shellcode: The Evolution of Malware DBGPRINT
Waterbear