Posts
IcedID PhotoLoader evolution
Hiding in the clouds
Loaders a plenty, Buer to Smoke
Golang wrapper on an old obscene malware
Research into Attacking Powershell Empire
GoLang dropper with a Gravity RAT
Diving into Pluroxs DNS based protection layer
Research into data exfiltration using DOH
CVE-2018-15982 being used to push CobInt
TrickBot worming detection
Hiding a beacon in a jquery
Manually unpacking Anubis APK
MS Crypto Derive Functions
TrickBot & UACME
Cracking the Marcher APK zip
Initial OCSP and CRL research
GandCrab overview and crypter reuse
subscribe via RSS