Click here to download all references as Bib-File.
2022-10-24 ⋅ Youtube (Virus Bulletin) ⋅ Hunting the AndroidBianLian botnet BianLian |
2022-09-19 ⋅ Virus Bulletin ⋅ Tracking the entire iceberg - long-term APT malware C2 protocol emulation and scanning ShadowPad Winnti |
2021-11-04 ⋅ Youtube (Virus Bulletin) ⋅ ShadowPad: the masterpiece of privately sold malware in Chinese espionage PlugX ShadowPad |
2021-04-21 ⋅ Virus Bulletin ⋅ Run Your Malicious VBA Macros Anywhere! |
2021-01-28 ⋅ Youtube (Virus Bulletin) ⋅ The Bagsu banker case Azorult DreamBot Emotet Pony TrickBot ZeusAction |
2021-01-08 ⋅ Youtube (Virus Bulletin) ⋅ Unveiling the CryptoMimic |
2021-01-08 ⋅ Youtube (Virus Bulletin) ⋅ Operation LagTime IT: colourful Panda footprint Cotx RAT nccTrojan Poison Ivy Tmanger TA428 |
2020-09-30 ⋅ Virus Bulletin ⋅ XDSPY: STEALING GOVERNMENT SECRETS SINCE 2011 XDSpy XDSpy |
2020-09-30 ⋅ Youtube (Virus Bulletin) ⋅ Evasive Panda MgBot BRONZE HIGHLAND |
2020-09-22 ⋅ Youtube (Virus Bulletin) ⋅ Ramsay: A cyber-espionage toolkit tailored for air-gapped networks Ramsay |
2020-03-11 ⋅ Virus Bulletin ⋅ Attribution is in the object: using RTF object dimensions to track APT phishing weaponizers 8.t Dropper |
2020-03-10 ⋅ Virus Bulletin ⋅ Kimsuky group: tracking the king of the spear phishing Kimsuky MyDogs |
2020-03-02 ⋅ Virus Bulletin ⋅ Pulling the PKPLUG: the adversary playbook for the long-standing espionage activity of a Chinese nation-state adversary HenBox Farseer PlugX Poison Ivy |
2020-02-14 ⋅ Virus Bulletin ⋅ LokiBot: dissecting the C&C panel deployments Loki Password Stealer (PWS) |
2020-01-31 ⋅ Virus Bulletin ⋅ Rich Headers: leveraging this mysterious artifact of the PE format Dridex Exaramel Industroyer Neutrino RCS Sathurbot |
2020-01-20 ⋅ Virus Bulletin ⋅ Behind the scenes of GandCrab’s operation Gandcrab |
2019-12-12 ⋅ Virus Bulletin ⋅ Cyber espionage in the Middle East: unravelling OSX.WindTail WindTail |
2019-11-11 ⋅ Virus Bulletin ⋅ APT cases exploiting vulnerabilities in region‑specific software NodeRAT Emdivi PlugX |
2019-11 ⋅ Virus Bulletin ⋅ VB2019 paper: Different ways to cook a crab: GandCrab ransomware-as-a-service (RaaS) analysed in depth Gandcrab |
2019-10-23 ⋅ Virus Bulletin ⋅ Spoofing in the reeds with Rietspoof Rietspoof |