Malware source code investigation: HelloKitty - part 2. NTRUEncrypt
HelloKitty ransomware represents a sophisticated strain of malicious software strategically designed for targeted attacks, demonstrating an evolved and nuanc...
categories
threat-hunting
Malware analysis report: Smoke Loader
Smoke Loader, software introduced in 2011, is primarily utilized for loading subsequent stages of malware onto systems, particularly information stealers des...
Malware analysis report: Snake keylogger
Snake Keylogger (aka 404 Keylogger) is a subscription-based keylogger with numerous features. The infostealer has the ability to steal a victim’s personal in...
Malware analysis report: Stealc stealer - part 3
This is a last part of our analysis report of Stealc, an information stealer promoted by its supposed developer Plymouth on Russian-language underground foru...
Malware analysis report: Stealc stealer - part 2
We continue to publish our analysis report of Stealc, an information stealer promoted by its supposed developer Plymouth on Russian-language underground foru...
Malware analysis report: Stealc stealer - part 1
Stealc is an information stealer advertised by its presumed developer Plymouth on Russian-speaking underground forums and sold as a Malware-as-a-Service sinc...
Malware source code investigation: HelloKitty - part 1
HelloKitty ransomware represents a sophisticated strain of malicious software strategically designed for targeted attacks, demonstrating an evolved and nuanc...
Malware source code investigation: BlackLotus - part 2
BlackLotus is a UEFI bootkit that targets Windows and is capable of evading security software, persisting once it has infected a system, bypassing Secure Boo...
Malware source code investigation: BlackLotus - part 1
BlackLotus is a UEFI bootkit that targets Windows and is capable of evading security software, persisting once it has infected a system, bypassing Secure Boo...
Malware analysis report: BlackCat ransomware
BlackCat is Rust-based ransomware distributed via the Ransomware-as-a-Service (RaaS) model. BlackCat was observed for the first time in November 2021 and has...
Malware source code investigation: Paradise Ransomware
Paradise Ransomware is a type of malware that encrypts the files on the victims’ systems and then demands a ransom to recover the data. This ransomware famil...
Malware analysis report: Babuk ransomware
Babuk is a ransomware family that was first discovered in early 2021. It quickly became infamous, especially among corporate networks, for its ability to qui...
Malware analysis report: SNOWYAMBER (+APT29 related malwares)
This report provides a comprehensive analysis of the SNOWYAMBER dropper, and it’s modifications, a sophisticated piece of malware attributed to the Advanced ...
Malware source code investigation: AsyncRAT
AsyncRAT is a Remote Access Trojan (RAT) designed to remotely monitor and control infected systems. It is free, open-source, and often used by cybercriminals...
Malware analysis report: WinDealer (LuoYu Threat Group)
WinDealer is a type of malware that is used for financial fraud and theft. It is a banking Trojan that is designed to steal sensitive financial information, ...
tutorial
Welcome to our cybersecurity blog
Welcome to our cybersecurity blog!
open-source
DEFC: simple enumeration tool for detect AV/EDR
Hello, cybersecurity enthusiasts and white hackers!
exam
HackTheBox Certified Bug Bounty Hunter Review
The HTB Certified Bug Bounty Hunter is a hands-on certification that evaluates candidates’ skills in bug hunting and web application testing.