Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-08-15eSentireeSentire Threat Response Unit (TRU)
@online{tru:20230815:stealc:25de99b, author = {eSentire Threat Response Unit (TRU)}, title = {{StealC Delivered via Deceptive Google Sheets}}, date = {2023-08-15}, organization = {eSentire}, url = {https://www.esentire.com/blog/stealc-delivered-via-deceptive-google-sheets}, language = {English}, urldate = {2023-08-21} } StealC Delivered via Deceptive Google Sheets
Stealc
2023-08-01eSentireeSentire Threat Response Unit (TRU)
@online{tru:20230801:batloader:4398798, author = {eSentire Threat Response Unit (TRU)}, title = {{BatLoader Continues Signed MSIX App Package Abuse}}, date = {2023-08-01}, organization = {eSentire}, url = {https://www.esentire.com/blog/batloader-continues-signed-msix-app-package-abuse}, language = {English}, urldate = {2023-08-15} } BatLoader Continues Signed MSIX App Package Abuse
BATLOADER
2023-03-30eSentireeSentire Threat Response Unit (TRU)
@online{tru:20230330:esentire:e789d22, author = {eSentire Threat Response Unit (TRU)}, title = {{eSentire Threat Intelligence Malware Analysis: BatLoader}}, date = {2023-03-30}, organization = {eSentire}, url = {https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-batloader}, language = {English}, urldate = {2023-07-31} } eSentire Threat Intelligence Malware Analysis: BatLoader
BATLOADER Cobalt Strike ISFB SystemBC Vidar
2023-03-09eSentireeSentire Threat Response Unit (TRU)
@online{tru:20230309:batloader:db50046, author = {eSentire Threat Response Unit (TRU)}, title = {{BatLoader Continues to Abuse Google Search Ads to Deliver Vidar Stealer and Ursnif}}, date = {2023-03-09}, organization = {eSentire}, url = {https://www.esentire.com/blog/batloader-continues-to-abuse-google-search-ads-to-deliver-vidar-stealer-and-ursnif}, language = {English}, urldate = {2023-04-25} } BatLoader Continues to Abuse Google Search Ads to Deliver Vidar Stealer and Ursnif
BATLOADER ISFB Vidar
2022-12-07eSentireeSentire Threat Response Unit (TRU)
@online{tru:20221207:gootloader:fd84189, author = {eSentire Threat Response Unit (TRU)}, title = {{GootLoader Striking with a New Infection Technique}}, date = {2022-12-07}, organization = {eSentire}, url = {https://www.esentire.com/blog/gootloader-striking-with-a-new-infection-technique}, language = {English}, urldate = {2023-01-05} } GootLoader Striking with a New Infection Technique
GootLoader
2022-05-18eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220518:esentire:662b9d9, author = {eSentire Threat Response Unit (TRU)}, title = {{eSentire Threat Intelligence Malware Analysis: Mars Stealer}}, date = {2022-05-18}, organization = {eSentire}, url = {https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-mars-stealer}, language = {English}, urldate = {2022-05-24} } eSentire Threat Intelligence Malware Analysis: Mars Stealer
Mars Stealer
2022-05-10eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220510:redline:ecc9708, author = {eSentire Threat Response Unit (TRU)}, title = {{Redline Stealer Masquerades as Photo Editing Software}}, date = {2022-05-10}, organization = {eSentire}, url = {https://www.esentire.com/blog/redline-stealer-masquerades-as-photo-editing-software}, language = {English}, urldate = {2022-05-24} } Redline Stealer Masquerades as Photo Editing Software
RedLine Stealer
2022-05-02eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220502:asyncrat:8c09ca8, author = {eSentire Threat Response Unit (TRU)}, title = {{AsyncRAT Activity}}, date = {2022-05-02}, organization = {eSentire}, url = {https://www.esentire.com/blog/asyncrat-activity}, language = {English}, urldate = {2022-05-24} } AsyncRAT Activity
AsyncRAT
2022-04-27eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220427:esentire:64541e7, author = {eSentire Threat Response Unit (TRU)}, title = {{eSentire Threat Intelligence Malware Analysis: SolarMarker}}, date = {2022-04-27}, organization = {eSentire}, url = {https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-solarmarker}, language = {English}, urldate = {2022-05-05} } eSentire Threat Intelligence Malware Analysis: SolarMarker
solarmarker
2022-04-21eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220421:hackers:e10086f, author = {eSentire Threat Response Unit (TRU)}, title = {{Hackers Spearphish Corporate Hiring Managers with Poisoned Resumes, Infecting Them with the More_Eggs Malware, Warns eSentire}}, date = {2022-04-21}, organization = {eSentire}, url = {https://www.esentire.com/blog/hackers-spearphish-corporate-hiring-managers-with-poisoned-resumes-infecting-them-with-the-more-eggs-malware}, language = {English}, urldate = {2023-01-25} } Hackers Spearphish Corporate Hiring Managers with Poisoned Resumes, Infecting Them with the More_Eggs Malware, Warns eSentire
More_eggs TerraLoader VenomLNK
2022-04-11eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220411:fake:e57b0f2, author = {eSentire Threat Response Unit (TRU)}, title = {{Fake Chrome Setup Leads to NetSupportManager RAT and Mars Stealer}}, date = {2022-04-11}, organization = {eSentire}, url = {https://www.esentire.com/blog/fake-chrome-setup-leads-to-netsupportmanager-rat-and-mars-stealer}, language = {English}, urldate = {2022-05-24} } Fake Chrome Setup Leads to NetSupportManager RAT and Mars Stealer
Mars Stealer NetSupportManager RAT
2022-04-06eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220406:updateagent:5c1d48d, author = {eSentire Threat Response Unit (TRU)}, title = {{UpdateAgent macOS Malware}}, date = {2022-04-06}, organization = {eSentire}, url = {https://www.esentire.com/blog/updateagent-macos-malware}, language = {English}, urldate = {2022-05-24} } UpdateAgent macOS Malware
UpdateAgent
2022-04-05eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220405:esentire:b691a78, author = {eSentire Threat Response Unit (TRU)}, title = {{eSentire Threat Intelligence Malware Analysis: DoubleZero}}, date = {2022-04-05}, organization = {eSentire}, url = {https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-doublezero}, language = {English}, urldate = {2022-05-23} } eSentire Threat Intelligence Malware Analysis: DoubleZero
DoubleZero
2022-04-05eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220405:esentire:93d09ff, author = {eSentire Threat Response Unit (TRU)}, title = {{eSentire Threat Intelligence Malware Analysis: HeaderTip}}, date = {2022-04-05}, organization = {eSentire}, url = {https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-headertip}, language = {English}, urldate = {2022-05-23} } eSentire Threat Intelligence Malware Analysis: HeaderTip
HeaderTip
2022-03-31eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220331:esentire:287e4dd, author = {eSentire Threat Response Unit (TRU)}, title = {{eSentire Threat Intelligence Malware Analysis: CaddyWiper}}, date = {2022-03-31}, organization = {eSentire}, url = {https://www.esentire.com/blog/esentire-threat-intelligence-malware-analysis-caddywiper}, language = {English}, urldate = {2022-05-23} } eSentire Threat Intelligence Malware Analysis: CaddyWiper
CaddyWiper
2022-03-31eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220331:suspected:b909dfc, author = {eSentire Threat Response Unit (TRU)}, title = {{Suspected AsyncRAT Delivered via ISO Files Using HTML Smuggling Technique}}, date = {2022-03-31}, organization = {eSentire}, url = {https://www.esentire.com/blog/suspected-asyncrat-delivered-via-iso-files-using-html-smuggling-technique}, language = {English}, urldate = {2022-05-23} } Suspected AsyncRAT Delivered via ISO Files Using HTML Smuggling Technique
AsyncRAT
2022-03-21eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220321:conti:507fdf9, author = {eSentire Threat Response Unit (TRU)}, title = {{Conti Affiliate Exposed: New Domain Names, IP Addresses and Email Addresses Uncovered}}, date = {2022-03-21}, organization = {eSentire}, url = {https://www.esentire.com/blog/conti-affiliate-exposed-new-domain-names-ip-addresses-and-email-addresses-uncovered-by-esentire}, language = {English}, urldate = {2022-05-23} } Conti Affiliate Exposed: New Domain Names, IP Addresses and Email Addresses Uncovered
HelloKitty BazarBackdoor Cobalt Strike Conti FiveHands HelloKitty IcedID
2022-03-18eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220318:analysis:fd06091, author = {eSentire Threat Response Unit (TRU)}, title = {{Analysis of Leaked Conti Intrusion Procedures by eSentire’s Threat Response Unit (TRU)}}, date = {2022-03-18}, organization = {eSentire}, url = {https://www.esentire.com/blog/analysis-of-leaked-conti-intrusion-procedures-by-esentires-threat-response-unit-tru}, language = {English}, urldate = {2022-05-23} } Analysis of Leaked Conti Intrusion Procedures by eSentire’s Threat Response Unit (TRU)
Conti Conti
2022-03-09eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220309:exploitation:83cd523, author = {eSentire Threat Response Unit (TRU)}, title = {{Exploitation of VMware Horizon Servers by TunnelVision Threat Actor}}, date = {2022-03-09}, organization = {eSentire}, url = {https://www.esentire.com/blog/exploitation-of-vmware-horizon-servers-by-tunnelvision-threat-actor}, language = {English}, urldate = {2023-09-17} } Exploitation of VMware Horizon Servers by TunnelVision Threat Actor
Drokbk
2022-02-22eSentireeSentire Threat Response Unit (TRU)
@online{tru:20220222:icedid:67f870d, author = {eSentire Threat Response Unit (TRU)}, title = {{IcedID to Cobalt Strike In Under 20 Minutes}}, date = {2022-02-22}, organization = {eSentire}, url = {https://www.esentire.com/blog/icedid-to-cobalt-strike-in-under-20-minutes}, language = {English}, urldate = {2022-05-23} } IcedID to Cobalt Strike In Under 20 Minutes
Cobalt Strike IcedID PhotoLoader