Click here to download all references as Bib-File.•
| 2024-11-13
⋅
Bitdefender
⋅
ShrinkLocker (+Decryptor): From Friend to Foe, and Back Again |
| 2024-09-26
⋅
Palo Alto Networks Unit 42
⋅
Unraveling Sparkling Pisces’s Tool Set: KLogEXE and FPSpy FPSpy KLogEXE Kimsuky |
| 2024-09-10
⋅
Stacklok
⋅
Dependency hijacking: Dissecting North Korea’s new wave of DeFi-themed open source attacks targeting developers BeaverTail InvisibleFerret |
| 2024-08-22
⋅
Mandiant
⋅
PEAKLIGHT: Decoding the Stealthy Memory-Only Malware Emmenhtal |
| 2024-07-10
⋅
Akamai
⋅
CVE-2024-4577 Exploits in the Wild One Day After Disclosure Tsunami Ghost RAT xmrig |
| 2024-05-30
⋅
Cisco Talos
⋅
LilacSquid: The stealthy trilogy of PurpleInk, InkBox and InkLoader purpleink LilacSquid |
| 2024-05-06
⋅
Zscaler
⋅
HijackLoader Updates HijackLoader |
| 2024-02-07
⋅
Malwarebytes
⋅
How to tell if your toothbrush is being used in a DDoS attack |
| 2024-02-07
⋅
CrowdStrike
⋅
HijackLoader Expands Techniques to Improve Defense Evasion HijackLoader |
| 2023-10-23
⋅
SarlackLab
⋅
Advice For Catching a RedLine Stealer RedLine Stealer |
| 2023-09-28
⋅
HarfangLab
⋅
Loader Galore - TaskLoader at the start of a Pay-per-Install Infection Chain CustomerLoader Fabookie LgoogLoader SmokeLoader |
| 2023-09-18
⋅
Alpine Security
⋅
HijackLoader Targets Hotels: A Technical Analysis HijackLoader |
| 2023-09-08
⋅
Zscaler
⋅
Technical Analysis of HijackLoader HijackLoader |
| 2023-08-30
⋅
Nisos
⋅
Trickbot in Light of Trickleaks Data TrickBot |
| 2023-07-27
⋅
X (@BlackLotusLabs)
⋅
Tweet on update on AVrecon bot's migration to new infrastructure AVrecon |
| 2023-07-15
⋅
MSSP Lab
⋅
Malware source code investigation: BlackLotus - part 1 BlackLotus |
| 2023-06-13
⋅
Outpost24
⋅
ICS attack classifications: differentiating between cyberwarfare, cyberterrorism, and hacktivism UAC-0118 |
| 2023-05-29
⋅
BlackLotus stage 2 bootkit-rootkit analysis BlackLotus |
| 2023-05-03
⋅
unpac.me
⋅
UnpacMe Weekly: New Version of IcedId Loader IcedID PhotoLoader |
| 2023-04-19
⋅
Sophos
⋅
‘AuKill’ EDR killer malware abuses Process Explorer driver AuKill |