RPCKryptik @RPCKryptik
Threat hunter, malware nutter, all around pleasant chap. Learning my way one 'WisdomEyes' at a time 😝. United Kingdom Joined August 2018-
Tweets38
-
Followers85
-
Following268
-
Likes94
Fortinet wrote a longer blog about a boring "attack", titled "Newly Discovered Infostealer Attack Uses LokiBot"... and they are already "in the news" w/ it. So let me, "a no one, nowhere from these experts guy" tell you: there are ~ dozens to 100+ campaigns like that daily... 😫
Anyone have any info on #pyrogenic it's a new one to me. Email URL https://wsportsltd[.]co[.]uk File: Remittance_Advice_09022019_pdf.jar MD5: 4b3cea39ca40e0c2b00bb625827bbcb7 VT: 1/59 app.any.run/tasks/31eb87b5… #trojan #malware
#Ryuk #ransomware v19V.exe - f829cd6f8e15cbb7b8088ff3b5f6de2a Comp. Time:⚒️ 2019-07-19 Submitted: 🇩🇪 Encrypts:🔐 .RYK Note:🗒️ RyukReadMe.html #AnyRun using 64 bit machine: app.any.run/tasks/b5921999… Any network IOC's are from me opening FF to view the note.
This came from a maldoc, maybe #dridex can anyone confirm? I pulled these from memory: hxxps://212.68.198.234/ hxxps://212.129.37.217:3389/ htxxs://174.136.5.242:1801/ 0dad665d561bacd1fdc5750f14f1b437 app.any.run/tasks/0de777b0…
Kazakstan Bank themed #maldoc #macro on close from hxxps://nationalbank.bz/Doc/Prikaz.doc PS -> hxxps://wateroilclub.com/file/dwm.exe einmrmdmy.exe 6/68 on VT (SSL) -> formixing[.]com Not sure what this but it crashes in AnyRun or appears to. AnyRun: app.any.run/tasks/de487785…
#maldoc macro-on-close with 5/59 VT. Author is "kek". PS similar to past Retefe docs but not sure it is. PS ->hxxps://unistreamcloud.com/storage/doc/lsm.exe Payload seems to crash tries to goto hxxps://remainsproperty.com @James_inthe_box @bry_campbell app.any.run/tasks/f8e1923b…
DHL themed #maldoc runs when closed. DL exe (e1ee4bc1011084d38f0f6b96464cf9db) from hxxps://fvbrc.com/fvbrc-content/themes/fv/partials/calc.exe?322 I think this is #Retefe @hasherezade @bry_campbell @James_inthe_box Can grab the files from here: app.any.run/tasks/84956e31…
Phishing email 3 ISO attachments from 89.42.222.303 #picknmix 🧐 #xpertrat kimone02[.]duckdns.org:3683 app.any.run/tasks/c2f77bda… #nanocore kimone02[.]duckdns.org:5683 app.any.run/tasks/9e579649… #azorult hxxp://clucaxx.com/ox/index.php app.any.run/tasks/6eb6717b…
What do we have here? Downloads from stupsi[.]de/log/calc.exe, 64 bit PE. Download triggered by closing the doc.. "Dokument 20.11.2018 638944290.doc" #maldoc #malware app.any.run/tasks/a7aedea4…
#DiamondFox from a fake DHL email Subject: Fwd:DHL Shipment Notification : 6278216733 Sender: [email protected] Hash: 2467a07587fb21bf5ba735e322a2ff3fa3973f9570e363cabc8caa617efe35b6 Filename: eric.exe Run: app.any.run/tasks/be151020…
#emotet 20180711 160+ emails to 11:00, mainly with DOC attachment, only 20 unique HASH so far only one EXE set (11/7/2018 06:22:00) generic 'invoice'-type subjects pastebin.com/bEMh9bBA
Using a #Yara rule I made from a previous #Ryuk sample I found another #Ryuk #ransomware but it uses ext .RYK with a slightly different ransom note than the last sample I looked at. Still has HERMES mark Old sample - app.any.run/tasks/004df309… New sample - app.any.run/tasks/7a7845a2…
🧐PE from woofandtreat[.]com/page/page.php2 looks like #ursnif #gozi #banker POST with "404" to: hxxps://chicmall[.]com/index.htm app.any.run/tasks/d68aa759…
450 new #sLoad URLs added today 62 unique hosts, all resolve to 91.218.127.183 pastebin.com/izi6pDs8
URL jkmanos[.]com/extended downloads low detection .zip file from redirected sharepoint[.]com .zip containing .vbs runs bitsAdmin and attempts connection out Appears geofenced to UK Anyone know what it is? #malware Possible #Ursnif maybe? Anyrun .zip app.any.run/tasks/fdabbb7b…
Meet the update of the week! Now a text report is available to our users at all rates. ☑️ Contents Behaviour Graphs ☑️ Mobile-friendly ☑️ Ready for printing and converting to PDF ☑️ Easy-to-read design ☑️ Have no external links Example of #hawkeye: report.any.run/9452d4be264c55…
Low detection #maldoc downloads .msi file from an #openDir at readyteam[.]org Anyone know what they are? #malware File Name: Company profile.doc MD5: 70b506038ddf730014a9308a8969ec3d VT: 11/59 Anyrun .doc :app.any.run/tasks/9a34d0bf… Anyrun .msi :app.any.run/tasks/44b829d1…
Not enough credit goes to the researchers hunting/tracking #emotet & #trickbot all day, everyday. Please know your hard work is appreciated by researchers like me. @FewAtoms @pollo290987 @James_inthe_box @JRoosen @VK_Intel @JR0driguezB @JAMESWT_MHT
Fresh #ursnif via #malspam at: http://zsr7pln56d2ovr85[.]com/DAB/nerimf.php?l=jeba3.pas c2 is: 192.48.88.184 cc @benkow_ @Xylit0l @Anti_Expl0it @h3x2b @cocaman @fumik0_ hash "33892fbfe4d894d7e5762f09c4b88634f549eb3088fb7b81e57fe97bd025c443" on @HybridAnalysis soon
#hermes #ransomware in ZIP/EXE from admin@tartotscards[.]net (213.183.51.88) supportdecrypt@firemail[.]cc app.any.run/tasks/7f87fb9a…
nanjin002 @nanjin00272827
21 Followers 4K Following
seasmonikty @seasmonikty
11 Followers 293 Following
crawler_cookie_0 @crawler_cookie0
49 Followers 4K Following
包一 @VJ4duPyXdHspYiT
13 Followers 506 Following
Pure Reactions @PureReactions
83 Followers 1K Following jamaldacybergawd #BlackTeckTwitter Blah Blah Rah Rah
1ce_coffee @coffee_1ce
172 Followers 2K Following
Chris Collins @Alt_DataStreams
74 Followers 376 Following Security Analyst, Threat Intelligence Analyst, SOAR Engineer, Cloud Technologist, Threat Hunter, More at @firstenergycorp. Husband, Father of 5 @ Home.
Stevie @stevie8893
3 Followers 310 Following
Xenotype @Xenotyped
310 Followers 1K Following Forensics/mobile forensics/malware, general infosec and OSINT. Mostly here for news and the occasional rant into the void. NOT the DJ, but proficient in Spotify
Rui M @ruim27374
54 Followers 442 Following Security researcher by day. Gamer by night. Idiot by nature.
R1ck @d4rk_ricky
27 Followers 973 Following
Kelsey @malz4lyfe
0 Followers 117 Following
SurajWavhal @SurajWavhal
385 Followers 5K Following #MalwareResearcher #InformationSecurityResearcher #Cybersecurity #ThreatIntelligence #ThreatHunting #SOC
JalwareMake @notmalwarejake
3 Followers 42 Following noun. noun. believes in concept. DM me for anything topic. Did I hit the twitterbio beats?
zhengchaoping @zhengchaoping
71 Followers 2K Following
Simon Doyle @sidoyle
1K Followers 4K Following Security professional, into Techno. I support Everton FC.
Martin Junge @martin_junge
122 Followers 1K Following
lu1z4n4 🇮🇱🇮�... @miss_LN_
464 Followers 1K Following Offensive|defensive|EH|Security Engineer|Researcher|Python lover. BS.c in Software Eng. & MS.c in Security Eng.
semil zhang @semil_zhang
47 Followers 1K Following Reserve Engineer ,Python,C++,Deep focus on Windows Kernel
Ben Hunter @B_H101
1K Followers 2K Following Passionate about security research. Always on a learning curve.
Rafael S Marques @pegabizu
2K Followers 4K Following I'm all about malware, assembly, beer and freeboard. redTeam coder.
TopGunTI @TopGunTI1
40 Followers 246 Following Security Researcher | "Evil flourishes when good people do nothing." | quis custodiet ipsos custodes? | 🇺🇸🇨🇦🇦🇺🇳🇿🇬🇧🇺🇦 #NAFO Just a fella
Gajanand Rao Surve @gajanand_rao
282 Followers 3K Following Security / Malware analyst by profession and traveller by heart! proud Indian! loves books and chocolates.
William @hitholy
31 Followers 865 Following
z00rbin @z00rbin
0 Followers 257 Following
@cc100048& @alex0440
80 Followers 2K Following
Outkast TI @Outkast_TI
75 Followers 207 Following
5h31kh @OmriHering
107 Followers 880 Following
m0dd0g @m0dd0g1
37 Followers 1K Following
Hyperion Gray @HyperionGray
5K Followers 4K Following Software & Security Research, Penetration Testing, Ethical Hacker Education
makso_maksa @w_hacky
25 Followers 312 Following
LOLExec @Urahara3389
216 Followers 1K Following NSFOCUS M01N Security Team Team RedBlue/CTI Researcher
TOSINT_Threat @tosint_threat
0 Followers 30 Following
MK.Sibanda @Makhosi70162009
370 Followers 2K Following We are manufacturers of quality linen that offers affordable luxurious and interior turnkey solutions for the hospitality industry
Cyber Analyzer @cyberanalyzer
2K Followers 4K Following Malware Analyst #CyberSecurity #Malware #ThreatIntel #Ransomware #OSINT #Phishing #Maldoc #DFIR #InfoSec
EagleOne @Tyler80422
68 Followers 2K Following
M007 @heiye007
403 Followers 6K Following
__NooBDowN__ @__NooBDowN__
3 Followers 70 Following
Edvin @0x3dvin
21 Followers 389 Following
Recorded Future @RecordedFuture
109K Followers 2K Following Recorded Future. Know what matters. Act first.
JalwareMake @notmalwarejake
3 Followers 42 Following noun. noun. believes in concept. DM me for anything topic. Did I hit the twitterbio beats?
MISP (@misp@misp-comm... @MISPProject
23K Followers 95 Following MISP - Threat Sharing. An open source software and standards to share, create and validate threatintel and intelligence. Mastodon @[email protected]
urlscan.io @urlscanio
13K Followers 137 Following A sandbox for websites - Find malicious websites and phishing - https://t.co/LfPJPBGXFV - https://t.co/XjI4zJaBBp - #threatintel #cybercrime #infosec #web #phishing
Malwarebytes @Malwarebytes
82K Followers 1K Following Protection you can trust. Need support? @SupportMWB
Ronan Murphy @Smarttech01
12K Followers 2K Following Founder & Executive Chairman of Smarttech247 Founder https://t.co/C2xsmOzuZt
Anti-malware vigilant... @vigilantbeluga
816 Followers 2 Following Anti-malware vigilante in Korea, Republic Of
Securityblog @Securityblog
12K Followers 14K Following There are 10 types of people in the world. Those who understand binary, and those who don't. All opinions and views are my own. #BsidesDub organizer
Henri Nurmi @HenriNurmi
2K Followers 426 Following Breaking computers one by one. Focus on offensive security development and research.
Brandon Baxter @CyberScimitar
369 Followers 252 Following
zoni171 @zoni171
66 Followers 160 Following
Dan Hubbard @dhubbard858
1K Followers 375 Following HELPING BUILDERS BUILD : Currently founder of Disrupt Security.
Dhia Mahjoub, PhD @DhiaLite
2K Followers 3K Following Problem solver. Product builder. Innovator. former Head of Security Research @OpenDNS. #Cybersecurity, #DataAnalysis, #Web3, #BlockchainAnalytics.
Cisco Umbrella @CiscoUmbrella
72K Followers 5K Following Cisco Umbrella (formerly OpenDNS) provides the first line of defense against threats on the internet wherever users go. Support: [email protected]
Kimberly @StopMalvertisin
16K Followers 624 Following Security Researcher | Cyber Threat / Malware Analyst | Ex Sr. Threat Analyst @ Proofpoint | Founder of Stop Malvertising
Bart @bartblaze
14K Followers 653 Following Threat Intel and more. Opinions are my own, unless retweeted. Open DMs.
Nicolas Brulez @nicolasbrulez
18K Followers 582 Following Reverse Engineering Rockstar and Virus HEXorcist. CEO at #HEXorcist. Armadillo co-dev. 1st REcon trainer since 2005. Video Courses: https://t.co/YWsZN9U5LU
Mark Linton @marklinton
505 Followers 3K Following IT and Information Risk Professional. https://t.co/dP0nRLvCHK
zh4ck @zh4ck
3K Followers 236 Following Evolve or Die! Head of Vuln Research Lab at CUJO AI Volunteer at IoTVillage Hackersuli Meetup Hacktivity @[email protected] NetRunner, Shaper
Malware Unicorn @malwareunicorn
168K Followers 3 Following Mostly on @malwareunicorn.bsky.social @Straikerai. Ex-Microsoft. Ex-Meta.
SkyDogCon @SkyDogCon
2K Followers 744 Following The South's Premier Hacker/Maker Conference, located in Nashville, TN. October 20-22, 2017, Embassy Suites Cool Springs. Go Hack Yourself.
payneman @payneman
58 Followers 425 Following
Cait @catehamm
818 Followers 837 Following Threat Intelligence Researcher at Cisco Talos. Computers. Books. Coffee. 🦄
Tim Scanlin @HeyitsTimmay
287 Followers 304 Following Don't be blinded by whats in front of you, strive for more, see the world and the oportunities around you. #Infosec #0Days
Mosh @nyxbone
4K Followers 650 Following Malware Analysis & Ethical Hacking / #MalwareMustDie! #MMD! / CEH
Brian Mitchell @bemitc
51 Followers 175 Following
Dan Levy @justsml
2K Followers 4K Following Principal Engineer https://t.co/lf4AEyOz7Z Prev: Hotel Engine, Quizlet, LambdaSchool, Galvanize. OSS: NodeJS, MDN, Postgis, ReactRouter, GatsbyJS, Docker.
Zak Morris @zakmorris
2K Followers 4K Following Information Security | Artist | Founder | Musician | ADHD navigator -- tweets/opinions my own.
malwares.com @malwarescom
249 Followers 23 Following http://t.co/PvdiGbQ10n is a service to analyze various advanced, new-born, mutated malicious codes and URLs.
malware.lu @malwarelu
11K Followers 25 Following Malware.lu is a repository of malware and technical analysis. The goal of the project is to provide samples and technical analysis to security researcher.
Sucuri Labs @sucurilabs
5K Followers 4 Following Website Malware and Hack Removal. Website Protection. Scan your website for free at http://t.co/kR1HHewvMy
REMnux @REMnux
6K Followers 1 Following REMnux® is a free Linux toolkit for reverse-engineering and analyzing malware. Follow this account, managed by @lennyzeltser, for #REMnux updates and news.
MalwareTech @MalwareTechBlog
277K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2
malwr @malwr
12K Followers 4 Following The online malware analysis and research platform. Brought to you by @botherder and @jekil
kubotake3 @kubotake3
239 Followers 553 Following Cyber Security, Forensics , CISSP, GREM, GCFA / Beer Taster / I love beer!
robson utete @robby263
25 Followers 148 Following
Neutral8✗9eR @0x009AD6_810
5K Followers 97 Following bluesky @0x009ad6810.bsky.social mastodon @[email protected] https://t.co/BepAbJHkyh https://t.co/9szXkZP7Kh https://t.co/jLKFgn3OFg
LockyBOT @LockyBOT
508 Followers 1 Following Semi-pro DridexBOT troll. *I am NOT the Locky creator* but I did stay at a Holiday Inn Express once. I will retweet any Locky IOCs you send me. #Locky #LockyBOT
dst @dst516
101 Followers 844 Following
Philippe Lagadec @decalage2
5K Followers 1K Following Author of oletools, olefile, ViperMonkey, ExeFilter, Balbuzard. #DFIR, #malware analysis, maldocs, file formats, #Python. @[email protected]
n0t_8fr8d @n0t_8fr8d
202 Followers 915 Following Constantly working on #python,#cyber_security, #web_security #memory_forensics #threat_intel #malware_analysis. opinions made here are mine and not my $dayjob
Tom M. @TeMerc
623 Followers 366 Following Security Geek, Love F1 and Entertainment. BMW M5 owner. Opinions & comments expressed are solely my own. Fuck ElonTrends for United States
You might like
