Click here to download all references as Bib-File.
| 2020-11-19 ⋅ Twitter (@VK_intel) ⋅ Tweet on Trickbot Group pushing LIGHTBOT powershell script to gather information about AD Server LightBot |
| 2020-11-17 ⋅ Twitter (@VK_intel) ⋅ Tweet on a new fileless TrickBot loading method using code from MemoryModule TrickBot |
| 2020-08-14 ⋅ Twitter (@VK_intel) ⋅ Tweet on Zloader infection leading to Cobaltstrike Installation Cobalt Strike Zloader |
| 2020-06-17 ⋅ Twitter (@VK_intel) ⋅ Tweet on signed Tinymet payload (V.02) used by TA505 TinyMet |
| 2020-05-04 ⋅ Twitter (@VK_intel) ⋅ GuLoader API Loader Algorithm CloudEyE |
| 2020-04-29 ⋅ Twitter (@VK_intel) ⋅ Some Insight into GuLoader family CloudEyE |
| 2020-04-21 ⋅ Twitter (@VK_intel) ⋅ Tweet on Signed GuLoader CloudEyE |
| 2019-12-02 ⋅ Twitter (@VK_intel) ⋅ Tweet on Socelars Stealer Socelars |
| 2019-11-05 ⋅ Twitter (@VK_intel) ⋅ Tweet on Possible Snatch Snatch |
| 2019-10-11 ⋅ Twitter (@VK_intel) ⋅ Possible Lazarus x86 Malware (AppleJeus) AppleJeus |
| 2019-09-11 ⋅ Twitter (@VK_intel) ⋅ Tweet on Stealer/Uploader Ryuk Stealer |
| 2019-07-12 ⋅ Twitter (@VK_intel) ⋅ ATM Malware Pin/PAN Card Offline Skimmer XFSADM XFSADM |
| 2019-06-19 ⋅ Twitter (@VK_intel) ⋅ Tweet on Mach-O & PE32 Payloads PowerCat |
| 2019-04-25 ⋅ Twitter (@VK_intel) ⋅ Tweet on Ransomware RobinHood |
| 2019-01-17 ⋅ Twitter (@VK_intel) ⋅ Tweet on Turla Outlook Backdoor Outlook Backdoor |
| 2017-08-18 ⋅ Twitter (@VK_intel) ⋅ Tweet on extracted config from Gootkit SnatchLoader |