Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-12-14Checkpointhasherezade
Rhadamanthys v0.5.0 – A Deep Dive into the Stealer’s Components
Rhadamanthys
2023-08-31Checkpointhasherezade
From Hidden Bee to Rhadamanthys - The Evolution of Custom Executable Formats
Hidden Bee Rhadamanthys
2023-03-30hasherezade's 1001 nightshasherezade
Magniber ransomware analysis: Tiny Tracer in action
Magniber
2021-07-23Malwarebyteshasherezade
AvosLocker enters the ransomware scene, asks for partners
AvosLocker
2020-11-30Malwarebyteshasherezade, Jérôme Segura
German users targeted with Gootkit banker or REvil ransomware
GootKit REvil
2020-10-28Malwarebyteshasherezade, Hossein Jazi, Jérôme Segura, Marcelo Rivero
Fake COVID-19 survey hides ransomware in Canadian university attack
Vaggen
2020-05-31Malwarebyteshasherezade
Revisiting the NSIS-based crypter
Formbook
2020-05-21Malwarebyteshasherezade, prsecurity
The “Silent Night” Zloader/Zbot
Zloader
2019-08-15Malwarebyteshasherezade
The Hidden Bee infection chain, part 1: the stegano pack
Hidden Bee
2019-07-24Malwarebyteshasherezade
A deep dive into Phobos ransomware
Phobos
2019-05-31Malwarebyteshasherezade
Hidden Bee: Let’s go down the rabbit hole
Hidden Bee
2019-04-06Youtube (hasherezade)hasherezade
Unpacking ISFB (including the custom 'PX' format)
ISFB
2019-03-21Youtube (hasherezade)hasherezade
Unpacking Baldr stealer
Baldr
2018-11-12Malwarebyteshasherezade
What’s new in TrickBot? Deobfuscating elements
TrickBot
2018-08-30Malwarebyteshasherezade
Reversing malware in a custom format: Hidden Bee elements
Hidden Bee
2018-07-26Malwarebyteshasherezade, Jérôme Segura
‘Hidden Bee’ miner delivered via improved drive-by download toolkit
Hidden Bee
2018-07-16Malwarebytes Labshasherezade, Jérôme Segura
Magniber ransomware improves, expands within Asia
Magniber
2018-03-31Youtube (hasherezade)hasherezade
Deobfuscating TrickBot's strings with libPeConv
TrickBot
2018-03-19hasherezade
Unpacking Ursnif
ISFB
2018-03-14Malwarebytes Labshasherezade, Jérôme Segura, Vasilios Hioureas
Hermes ransomware distributed to South Koreans via recent Flash zero-day
Hermes