Malware Analysis

Topic	Views	Activity
Analyzing Hancitor DLL Live - Let's Build A Config Extractor!	133	October 4, 2021
New Tool: onion-connect-service-detection.py	113	October 4, 2021
Using Windows Sandbox for Malware Analysis	122	October 4, 2021
GhostEmperor: From ProxyLogon to kernel mode	181	September 30, 2021
[SoW] W4 Sep \| EN \| Story of the week: Ransomware on the Darkweb	158	September 30, 2021
[SoY] 2021 \| EN \| Story of the first half of the year: Ransomware on the Darkweb	145	September 30, 2021
2021-09-23 - Gozi/IFSB/Ursnif with Raccoon Stealer	154	September 30, 2021
Undetected Azure Active Directory Brute-Force Attacks	158	September 29, 2021
How Humble Are Reverse Engineers?	147	September 29, 2021
PixStealer: a new wave of Android banking Trojans abusing Accessibility Services	129	September 29, 2021
GriftHorse Android Trojan Steals Millions from Over 10 Million Victims Globally	133	September 29, 2021
Continuously Changing Malicious Word Macro Being Distributed – Trend of TA551 (2)	154	September 29, 2021
Update: base64dump.py Version 0.0.17	118	September 29, 2021
Winter Vivern – all Summer	117	September 28, 2021
Phishing Attacks 27_9_2021	105	September 28, 2021
Scam Mail Prompting Bitcoin Deposit Being Distributed	115	September 28, 2021
Unpacking APT29's Polyglot Duke	143	September 28, 2021
DoppelDridex Delivered via Slack and Discord	144	September 28, 2021
Live Coding A Squirrelwaffle Malware Config Extractor	107	September 27, 2021
Deobfuscating PowerShell Malware Droppers	182	September 27, 2021
Patching A Java .class File	124	September 26, 2021
Phishing Attacks 25_9_2021	148	September 25, 2021
2021-09-23 - Squirrelwaffle Loader with Qakbot and Cobalt Strike	159	September 25, 2021
2021-09-24 - Squirrelwaffle Loader with Qakbot and Cobalt Strike	159	September 25, 2021
Igor’s tip of the week #58: Keyboard modifiers	175	September 24, 2021
Atomsilo x Lockfile: Atomsilo copied BlackMatter and Cerber for operating the double extortion site	194	September 24, 2021
[SoW] W3 Sep \| EN \| Story of the week: Ransomware on the Darkweb	194	September 24, 2021
2021-09-22 - Squirrelwaffle Loader with Qakbot and Cobalt Strike	167	September 23, 2021
2021-09-21 - Squirrelwaffle Loader with Cobalt Strike	152	September 23, 2021
2021-09-20 - Qakbot (Qbot) returns after 2 month absence	129	September 23, 2021

Analyzing Hancitor DLL Live - Let's Build A Config Extractor!

0

133

October 4, 2021

New Tool: onion-connect-service-detection.py

0

113

October 4, 2021

Using Windows Sandbox for Malware Analysis

0

122

October 4, 2021

GhostEmperor: From ProxyLogon to kernel mode

0

181

September 30, 2021

[SoW] W4 Sep | EN | Story of the week: Ransomware on the Darkweb

0

158

September 30, 2021

[SoY] 2021 | EN | Story of the first half of the year: Ransomware on the Darkweb

0

145

September 30, 2021

2021-09-23 - Gozi/IFSB/Ursnif with Raccoon Stealer

0

154

September 30, 2021

Undetected Azure Active Directory Brute-Force Attacks

0

158

September 29, 2021

How Humble Are Reverse Engineers?

0

147

September 29, 2021

PixStealer: a new wave of Android banking Trojans abusing Accessibility Services

0

129

September 29, 2021

GriftHorse Android Trojan Steals Millions from Over 10 Million Victims Globally

0

133

September 29, 2021

Continuously Changing Malicious Word Macro Being Distributed – Trend of TA551 (2)

0

154

September 29, 2021

Update: base64dump.py Version 0.0.17

0

118

September 29, 2021

Winter Vivern – all Summer

0

117

September 28, 2021

Phishing Attacks 27_9_2021

0

105

September 28, 2021

Scam Mail Prompting Bitcoin Deposit Being Distributed

0

115

September 28, 2021

Unpacking APT29's Polyglot Duke

0

143

September 28, 2021

DoppelDridex Delivered via Slack and Discord

0

144

September 28, 2021

Live Coding A Squirrelwaffle Malware Config Extractor

0

107

September 27, 2021

Deobfuscating PowerShell Malware Droppers

0

182

September 27, 2021

Patching A Java .class File

0

124

September 26, 2021

Phishing Attacks 25_9_2021

0

148

September 25, 2021

2021-09-23 - Squirrelwaffle Loader with Qakbot and Cobalt Strike

0

159

September 25, 2021

2021-09-24 - Squirrelwaffle Loader with Qakbot and Cobalt Strike

0

159

September 25, 2021

Igor’s tip of the week #58: Keyboard modifiers

0

175

September 24, 2021

Atomsilo x Lockfile: Atomsilo copied BlackMatter and Cerber for operating the double extortion site

0

194

September 24, 2021

[SoW] W3 Sep | EN | Story of the week: Ransomware on the Darkweb

0

194

September 24, 2021

2021-09-22 - Squirrelwaffle Loader with Qakbot and Cobalt Strike

0

167

September 23, 2021

2021-09-21 - Squirrelwaffle Loader with Cobalt Strike

0

152

September 23, 2021

2021-09-20 - Qakbot (Qbot) returns after 2 month absence

0

129

September 23, 2021