Click here to download all references as Bib-File.
2021-11-18 ⋅ Twitter (@tccontre18) ⋅ Tweet on how to decrypt 4 layers of encryption & obfuscation of vjw0rm Vjw0rm |
2021-02-22 ⋅ tccontre Blog ⋅ Gh0stRat Anti-Debugging: Nested SEH (try - catch) to Decrypt and Load its Payload Ghost RAT |
2021-01-18 ⋅ tccontre Blog ⋅ Extracting Shellcode in ICEID .PNG Steganography IcedID |
2020-11-05 ⋅ tccontre Blog ⋅ Interesting FormBook Crypter - unconventional way to store encrypted data Formbook |
2020-08-10 ⋅ tccontre Blog ⋅ Learning From ICEID loader - Including its Steganography Payload Parsing IcedID |
2020-05-14 ⋅ tccontre Blog ⋅ Netwalker Ransomware: [API Call Obfuscation (using Structure) and Evading Memory Forensic] Mailto |
2020-04-08 ⋅ tccontre Blog ⋅ COVID19 Malware Analysis - with Kill MBR Feature CoViper |
2019-11-05 ⋅ tccontre Blog ⋅ CobaltStrike - beacon.dll : Your No Ordinary MZ Header Cobalt Strike |