Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-04-28WithSecureMarkus Tuominen, Mehmet Mert Surmeli
@online{tuominen:20230428:unleashing:d6f503c, author = {Markus Tuominen and Mehmet Mert Surmeli}, title = {{Unleashing the Power of Shimcache with Chainsaw}}, date = {2023-04-28}, organization = {WithSecure}, url = {https://labs.withsecure.com/tools/chainsaw-analyse-shimcache?utm_campaign=640efe1da5e1bd000157d4df&utm_content=644a517fcf5b690001477a59&utm_medium=smarpshare&utm_source=twitter&utm_term=Our+incident+responders+recently+battled+TheDukes_CozyBear_APT29+out+of+a+customer+environment_+We+also+developed+tooling+to+help+investigate+the+timeline+of+the+breach_+We+added+3+techniques+for+the+analysis+_+timestamp+enrichment+of+Shimcache+entries}, language = {English}, urldate = {2023-04-28} } Unleashing the Power of Shimcache with Chainsaw
2023-02-02WithSecureSami Ruohonen, Stephen Robinson
@techreport{ruohonen:20230202:no:2a5fce3, author = {Sami Ruohonen and Stephen Robinson}, title = {{No Pineapple! –DPRK Targeting of Medical Research and Technology Sector}}, date = {2023-02-02}, institution = {WithSecure}, url = {https://labs.withsecure.com/content/dam/labs/docs/WithSecure-Lazarus-No-Pineapple-Threat-Intelligence-Report-2023.pdf}, language = {English}, urldate = {2023-08-25} } No Pineapple! –DPRK Targeting of Medical Research and Technology Sector
Dtrack GREASE QuiteRAT
2022-07-26WithSecureMohammad Kazem Hassan Nejad
@techreport{nejad:20220726:ducktail:04c6c82, author = {Mohammad Kazem Hassan Nejad}, title = {{DUCKTAIL: An infostealer malware targeting Facebook Business accounts}}, date = {2022-07-26}, institution = {WithSecure}, url = {https://www.f-secure.com/content/dam/labs/docs/WithSecure_Research_DUCKTAIL.pdf}, language = {English}, urldate = {2022-10-05} } DUCKTAIL: An infostealer malware targeting Facebook Business accounts
DUCKTAIL