Click here to download all references as Bib-File.
| 2022-11-21 ⋅ vmware ⋅ Threat Analysis: Active C2 Discovery Using Protocol Emulation Part4 (Dacls, aka MATA) Dacls |
| 2022-10-25 ⋅ VMware Threat Analysis Unit ⋅ Tracking the entire iceberg: long-term APT malware C2 protocol emulation and scanning ShadowPad Winnti |
| 2022-10-03 ⋅ vmware ⋅ Emotet Exposed: A Look Inside the Cybercriminal Supply Chain Emotet |
| 2022-05-16 ⋅ vmware ⋅ Emotet Moves to 64 bit and Updates its Loader Emotet |
| 2022-03-29 ⋅ vmware ⋅ Emotet C2 Configuration Extraction and Analysis Emotet |
| 2022-03-23 ⋅ vmware ⋅ SysJoker – An Analysis of a Multi-OS RAT SysJoker SysJoker SysJoker |
| 2022-03-04 ⋅ vmware ⋅ Hermetic Malware: Multi-component Threat Targeting Ukraine Organizations HermeticWiper |
| 2022-02-25 ⋅ vmware ⋅ AvosLocker – Modern Linux Ransomware Threats Avoslocker |
| 2022-02-07 ⋅ vmware ⋅ Emotet Is Not Dead (Yet) – Part 2 Emotet |
| 2022-01-21 ⋅ vmware ⋅ Emotet Is Not Dead (Yet) Emotet |
| 2021-12-23 ⋅ vmware ⋅ Introducing DARTH: Distributed Analysis for Research and Threat Hunting |
| 2021-11-11 ⋅ vmware ⋅ Research Recap: How To Automate Malware Campaign Detection With Telemetry Peak Analyzer Phorpiex QakBot |
| 2021-03-25 ⋅ VMWare Carbon Black ⋅ Memory Forensics for Virtualized Hosts |
| 2021-02-23 ⋅ vmware ⋅ Iron Rain: Understanding Nation-State Motives and APT Groups |
| 2019-11-19 ⋅ VMWare Carbon Black ⋅ Threat Analysis Unit (TAU) Threat Intelligence Notification: AsyncRAT AsyncRAT |
| 2019-09-30 ⋅ vmware ⋅ CB Threat Analysis Unit: Technical Analysis of “Crosswalk” CROSSWALK |
| 2019-09-05 ⋅ vmware ⋅ CB Threat Analysis Unit Technical Breakdown: GermanWiper Ransomware Ordinypt |