Posts

• Apr 28, 2020

  IcedID PhotoLoader evolution

• Mar 24, 2020

  Hiding in the clouds

• Mar 18, 2020

  Loaders a plenty, Buer to Smoke

• Feb 28, 2020

  Golang wrapper on an old obscene malware

• Oct 5, 2019

  Research into Attacking Powershell Empire

• Sep 26, 2019

  GoLang dropper with a Gravity RAT

• Sep 23, 2019

  Diving into Pluroxs DNS based protection layer

• Sep 22, 2019

  Research into data exfiltration using DOH

• Dec 7, 2018

  CVE-2018-15982 being used to push CobInt

• Nov 30, 2018

  TrickBot worming detection

• Oct 8, 2018

  Hiding a beacon in a jquery

• Aug 30, 2018

  Manually unpacking Anubis APK

• May 12, 2018

  MS Crypto Derive Functions

• Apr 16, 2018

  TrickBot & UACME

• Apr 2, 2018

  Cracking the Marcher APK zip

• Feb 8, 2018

  Initial OCSP and CRL research

• Feb 1, 2018

  GandCrab overview and crypter reuse

subscribe via RSS