Click here to download all references as Bib-File.
2021-04-06 ⋅ McAfee ⋅ Technical Analysis of Cuba Ransomware Cuba Ransomware |
2021-03-10 ⋅ ESET Research ⋅ Exchange servers under siege from at least 10 APT groups Microcin MimiKatz PlugX Winnti |
2021-03-02 ⋅ Volexity ⋅ Operation Exchange Marauder: Active Exploitation of Multiple Zero-Day Microsoft Exchange Vulnerabilities CHINACHOPPER HAFNIUM |
2021-02-24 ⋅ McAfee ⋅ Technical Analysis of Babuk Ransomware Babuk Ransomware |
2021-01-28 ⋅ 0xC0DECAFE ⋅ Learn how to fix PE magic numbers with Malduck |
2021-01-08 ⋅ 0xC0DECAFE ⋅ The malware analyst’s guide to aPLib decompression ISFB Rovnix |
2020-12-28 ⋅ 0xC0DECAFE ⋅ Never upload ransomware samples to the Internet Ryuk |
2020-12-23 ⋅ 0xC0DECAFE ⋅ Detect RC4 in (malicious) binaries SmokeLoader Zloader |
2020-12-17 ⋅ Telekom ⋅ Smokeloader is still alive and kickin’ – A new way to encrypt CC server URLs SmokeLoader |
2020-12-14 ⋅ Volexity ⋅ Dark Halo Leverages SolarWinds Compromise to Breach Organizations SUNBURST |
2020-12-04 ⋅ Stratosphere Laboratory ⋅ Current State of IPv6 Security in IoT |
2020-11-06 ⋅ Volexity ⋅ OceanLotus: Extending Cyber Espionage Operations Through Fake Websites Cobalt Strike KerrDown APT32 |
2020-10-19 ⋅ SPAM Auditor ⋅ The Many Faces of Emotet Emotet |
2020-10-06 ⋅ Telekom ⋅ Eager Beaver: A Short Overview of the Restless Threat Actor TA505 Clop Get2 SDBbot TA505 |
2020-07-24 ⋅ Medium tom_rock ⋅ Fifty Shades of Malware Strings |
2020-06-16 ⋅ Telekom ⋅ TA505 returns with a new bag of tricks Clop Get2 SDBbot TA505 |
2020-05-14 ⋅ Telekom ⋅ LOLSnif – Tracking Another Ursnif-Based Targeted Campaign LOLSnif |
2020-05-06 ⋅ Malwarebytes ⋅ New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app Dacls |
2020-04-21 ⋅ Volexity ⋅ Evil Eye Threat Actor Resurfaces with iOS Exploit and Updated Implant |
2020-03-26 ⋅ Telekom ⋅ TA505's Box of Chocolate - On Hidden Gems packed with the TA505 Packer Amadey Azorult Clop FlawedGrace Get2 SDBbot Silence TinyMet TA505 |