Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-07-26WeixinAnheng Threat Intelligence Center
@online{center:20230726:apt29:dec5309, author = {Anheng Threat Intelligence Center}, title = {{APT29 recently faked the German embassy and issued a malicious PDF file}}, date = {2023-07-26}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s?__biz=MzUyMDEyNTkwNA%3D%3D&mid=2247494783&idx=1&sn=612cf3cea1ef62e04bfb6bd0ce3b6b65&chksm=f9ed80c0ce9a09d6f5edc1424df5260cb9a9cf55fe92bd922407eef960650e91ec8cc46933ab&scene=178&cur_album_id=1375769135073951745}, language = {Chinese}, urldate = {2023-07-28} } APT29 recently faked the German embassy and issued a malicious PDF file
BEATDROP Unidentified 107 (APT29)
2022-08-15WeixinKnow Chuangyu
@online{chuangyu:20220815:analysis:95970a9, author = {Know Chuangyu}, title = {{Analysis of the characteristics of new activities organized by Patchwork APT in South Asia}}, date = {2022-08-15}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/egG0nORZFvo_rCY_zmTgVQ}, language = {Chinese}, urldate = {2022-08-18} } Analysis of the characteristics of new activities organized by Patchwork APT in South Asia
2022-08-10WeixinRed Raindrop Team
@online{team:20220810:operation:cdad302, author = {Red Raindrop Team}, title = {{Operation(верность) mercenary: a torrent of steel trapped in the plains of Eastern Europe}}, date = {2022-08-10}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/cGS8FocPnUdBconLbbaG-g}, language = {Chinese}, urldate = {2022-08-15} } Operation(верность) mercenary: a torrent of steel trapped in the plains of Eastern Europe
BumbleBee Cobalt Strike
2022-07-13WeixinAntiy CERT
@online{cert:20220713:confucius:307a7f4, author = {Antiy CERT}, title = {{Confucius: The Angler Hidden Under CloudFlare}}, date = {2022-07-13}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/n6XQAGtNEXfPZXp1mlwDTQ}, language = {English}, urldate = {2022-07-14} } Confucius: The Angler Hidden Under CloudFlare
Quasar RAT
2022-05-18Weixin360 Threat Intelligence Center
@online{center:20220518:filesyncshelldll:4266601, author = {360 Threat Intelligence Center}, title = {{filesyncshell.dll hijacked? APT-C-24 Sidewinder Briefing on the Latest Attack Activity}}, date = {2022-05-18}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/qsGxZIiTsuI7o-_XmiHLHg}, language = {Chinese}, urldate = {2022-05-25} } filesyncshell.dll hijacked? APT-C-24 Sidewinder Briefing on the Latest Attack Activity
2022-03-30WeixinQAX Virus Response Center
@online{center:20220330:vajraeleph:272518d, author = {QAX Virus Response Center}, title = {{VajraEleph, a Vajra elephant group from South Asia, reveals cyber espionage campaign against Pakistani military personnel}}, date = {2022-03-30}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/B0ElRhbqLzs-wGQh79fTww}, language = {Chinese}, urldate = {2022-03-31} } VajraEleph, a Vajra elephant group from South Asia, reveals cyber espionage campaign against Pakistani military personnel
VajraSpy
2022-02-23Weixin360 Threat Intelligence Center
@online{center:20220223:aptc58:fb10a0a, author = {360 Threat Intelligence Center}, title = {{APT-C-58 (Gorgon Group) attack warning}}, date = {2022-02-23}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/X0kAIHOSldiFDthb4IsmbQ}, language = {Chinese}, urldate = {2022-03-01} } APT-C-58 (Gorgon Group) attack warning
Agent Tesla
2019-12-04WeixinGcow Security Team
@online{team:20191204:tentacles:721ed63, author = {Gcow Security Team}, title = {{Tentacles reaching Central Asia: analysis of Uzbekistan activities by DustSquad APT}}, date = {2019-12-04}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/v1gi0bW79Ta644Dqer4qkw}, language = {Chinese}, urldate = {2020-01-10} } Tentacles reaching Central Asia: analysis of Uzbekistan activities by DustSquad APT
Octopus
2019-06-01WeixinWeixin
@online{weixin:20190601:antiy:5d7e584, author = {Weixin}, title = {{Antiy releases analysis report of "Formula Organization" attack on Middle East SWIFT service providers}}, date = {2019-06-01}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/3ZQhn32NB6p-LwndB2o2zQ}, language = {Chinese}, urldate = {2020-01-13} } Antiy releases analysis report of "Formula Organization" attack on Middle East SWIFT service providers
2019-04-24WeixinTencent
@online{tencent:20190424:sea:a722d68, author = {Tencent}, title = {{"Sea Lotus" APT organization's attack techniques against China in the first quarter of 2019 revealed}}, date = {2019-04-24}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/xPsEXp2J5IE7wNSMEVC24A}, language = {English}, urldate = {2020-01-13} } "Sea Lotus" APT organization's attack techniques against China in the first quarter of 2019 revealed
Cobalt Strike SOUNDBITE
2019-02-28Weixin360威胁情报中心
@online{360:20190228:urlzone:e1814da, author = {360威胁情报中心}, title = {{URLZone: Analysis of Suspected Attacks Against Japanese Hi-Tech Enterprise Employees}}, date = {2019-02-28}, organization = {Weixin}, url = {https://mp.weixin.qq.com/s/NRytT94ne5gKN31CSLq6GA}, language = {Chinese}, urldate = {2019-11-27} } URLZone: Analysis of Suspected Attacks Against Japanese Hi-Tech Enterprise Employees
UrlZone