MalwareLab.pl @malwarelabpl
Malware Research. Threat Inteligence. Trainings - [email protected] malwarelab.pl Joined February 2020-
Tweets19
-
Followers590
-
Following3
-
Likes13
Last month, for @AmnestyTech, we analyzed OSX sample of #FinFisher and provide other insights we gather along the way including some scripts aiding further analysis. If you need any help with any #malware related problems, don't hesitate to drop us an email, we are happy to help!
Last month, for @AmnestyTech, we analyzed OSX sample of #FinFisher and provide other insights we gather along the way including some scripts aiding further analysis. If you need any help with any #malware related problems, don't hesitate to drop us an email, we are happy to help!
@maciekkotowicz is getting us some details on Fishing Elephant tools and tactics #x33fcon #APT
Jeżeli chcecie zobaczyc jakas konkretna kampanie - czekamy na propozycje do 14.07, jak nie to cos sobie znajdziemy ;]
@maciekkotowicz is our next speaker at #CCCC2020. He worked before as Senior Security Researcher in Kaspersky GReAT or Principal Botnet owner at CERT.pl. He'll talk about #Fishing Elephant, or How to Build a Cloud-Based #APT. bit.ly/3dSx8E0 #Conference
This time we write about #Skidware - blog.malwarelab.pl/posts/venom/ | We found new #hackforums grade rat based on #Quasar - its hilarious, check it out #Malware //cc @JAMESWT_MHT @James_inthe_box @Casperinous
document (virustotal.com/gui/file/ab541… - Bubar Parlimen.docx) dropping #DADSTACHE, download urls: hxxps://armybar.hopto[.]org/{RemoteLoad.dotm,LogiMailApp.exe,LogiMail.dll,Encrypted} c2: tomema.myddns[.]me #Leviathan/#APT40 cc: @Mao_Ware
bunch of #TA505 docs with name: Human Resources Annual Report.docx (list: github.com/MalwareLab-pl/…) mimics real vba code, will drop a dll with typical packer and #get2 with c2: shr-links[.]com probable lure email: virustotal.com/gui/file/91459… #ThreatIntel #Malware #APT #ThreatHunting
Interesting clue about operation timeline of #Higaisa based on samples from @Malwarebytes's article - before jumping to shellcode loader checks if current year is in [2018,2021] time frame (it also makes quite a good #yara ) #APT #Malware #ThreatHunting #threatintel
We write up our analysis of a validator dropped by documents used by #Lazarus, this validator was used in a campaing described by telsy as well as the ones recenty conducted against LockheedMartin, BAESystemsplc, Boeing. blog.malwarelab.pl/posts/lazarus_… cc: @Manu_De_Lucia @Arkbird_SOLG
Couple of #Lazarus #APT samples, with decoy documents referencing @LockheedMartin, @BAESystemsplc, @Boeing. Downloads remote templates and drops double-base64 encoded patched sqlite3 dlls, iocs: gist.github.com/mak/81f6161f85… patched/added exports: sqlite3_stmt_all,sqlite3_stepsW
Second part (and last;) of our #Nazar's #APT tool is live. blog.malwarelab.pl/posts/nazar_ey… . With some experimental #snort/#suricata rule for you amusement #Malware #ThreatIntel #sig37 /cc @juanandres_gs
Quick update on #Nazar #APT capabilities (blog.malwarelab.pl/posts/nazar_ey…) | Tomorrow will post analysis of c2 protocol
We put some hours into covering blanks about tool used by #Nazar #APT /cc: @juanandres_gs blog.malwarelab.pl/posts/nazar_ey…
New #aggah campaign, #GuLoader added to chain Doc: 7418b898c989e3fb0d13b5db2c9773478e23150c590acad5832ccc3c14b80a26 remote payloads: hxxp://office-updates-index[.]com/{Report.rtf,Attack.jpg,File.vbs, track.jpg,max.bin} #AgentTesla c2: fxp://ftp.centredebeautenellycettier[.]fr/
We put some effort into analyzing #RoyalRoad (aka 8t) rtf weaponizer. Take a look blog.malwarelab.pl/posts/on_the_r… /cc @nao_sec #APT #malware #ThreatIntel
@maciekkotowicz at #x33fcon 2020! Fishing Elephant, or How To Build Cloud Based APT x33fcon.com/#!s/mak.md Register: x33fcon.com/#!conference.m…
Our first public analysis, new campaing from #Aggah analyzed with a lot of #bashfu blog.malwarelab.pl/posts/basfu_ag…
ZaufanaTrzeciaStrona ... @Zaufana3Strona
44K Followers 279 Following Wszystko co chcesz wiedzieć o hasłach: https://t.co/bn2iYZxaPh
Informatyk Zakładowy @InfZakladowy
32K Followers 295 Following Sprawdź szkolenie ze scrapowania edycja 2025! https://t.co/wVtJ9T7CIu
Bartek Jerzman @secman_pl
2K Followers 3K Following Hunting ghosts in wires and boxes, Head of CTI, former NCSC-PL, PL Navy #fightingthreats | @PIVOT_con co-founder
Félix Aimé @felixaime
6K Followers 2K Following Threat Intel. stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Principal CTI researcher at @sekoia_io, focused on state-sponsored / hybrid stuff.
www.AntiHackersWallet... @AHWalletsOS
0 Followers 397 Following #CyberIntelligence #RisksIntelligence #threatsIntelligence #maliciousIntelligence #dangerousIntelligence #ransomwareIntelligence #AnonymousIntelligence
Kiara Gutmann @KiaraGutma91748
5 Followers 172 Following Recruiting webshell engineers to penetrate websites, with a monthl y salary of up to $100,000. If interested, please contact https://t.co/EZwuoAGnhD
x86byte @x86byte
102 Followers 824 Following Low-Level Security Enthusiast ^ iOS & Windows Vulnerability Researcher & Exploit Developer 👾🥤
Torres @Torres4461731
1 Followers 58 Following
Kartikey Jain @kartikeyj96
26 Followers 462 Following OSEP | OSCP | OSWP | CRTP | CRTO | KLCP | Security Consultant @ Prescient Security | Security Enthusiast | A Curious learner
Bartek Nowotarski @bartn_
2K Followers 3K Following Security Research | Prev: Staff Software Engineer at @StellarOrg
JessicaDonohue @donohuejessicak
0 Followers 89 Following
Crazy Hell Records @CHROS2050
37 Followers 2K Following https://t.co/IBfcokBE1i [email protected] $BTC $ETC $NFT $WEB3
Yan @yanick_r
167 Followers 1K Following Cyber Security Enthusiast | Nursing Student | Multipotentialite 七転び八起き ✨
Malware 505 @0xfff0x
1 Followers 65 Following
Rapido @Rapido056793401
2 Followers 116 Following
https://createspremiu... @CPAapp2050
12 Followers 399 Following https://t.co/gnmdXWeWou #opensource 2FA Introductions $CPA Accounts Tokens - API Hardware Software NFT Web3 API ecosystem Verification users
https://crazyhellvaul... @CHVApp1
21 Followers 1K Following https://t.co/7WGskjRNeq [email protected] Comprehensives Extremely authentication Own intelligences methods
L², PhD @L_Lgde
669 Followers 3K Following DFIR, Malware & CTI. Head of a CSIRT. Ex @ANSSI_FR. PhD in intl law. Mostly working on Chinese #APT but also on russian and cybercrime actors #CTI #Malware
www.DJMetalheadsShow.... @groups3936
121 Followers 606 Following https://t.co/VpxwP9UjvV [email protected] [email protected] [email protected]
Naveen Selvan @infantnaveen
485 Followers 3K Following Security Researcher II - APT @Zscaler | Asm, Python, ML♥️ | Wannacry Patcher | CTFer-Reverser for Life! | for(;;)exploit() | Tweets are my own | Ex @Trellix
t @cybersec321
1 Followers 56 Following
www.CloudMalwareAnaly... @AnalysisGroups
476 Followers 5K Following CloudMalwareAnalysisGroups@CloudMalwareAnalysisGroups.vulnerabilities
Jaro Herba @HerbaJaro
2 Followers 81 Following
spider @LulleLullu63135
134 Followers 3K Following
itweek 🔥 @itweekpl
373 Followers 379 Following 🅘🅣🅦🅔🅔🅚.🅟🅛 Piszemy, rozmawiamy i myślimy w języku IT. ▪︎ wiadomości IT ▪︎ cyberbezpieczeństwo ▪︎ praca w IT ▪︎ edukacja ▪︎ nowości ▪︎ recenzje
Carlo Mauro Caro Pove... @wiscdn0
160 Followers 2K Following IST BI Net DevOps Cloud IoT BigData SecOps CEO CISO DFIR CISSP SEC+ CSIH CISM
hack3dBYghost @mi_jankowski
162 Followers 774 Following Eat Sleep Cybersecurity Another day of life, another day of learning. Battling myself for consistency, proving to myself that I can.
Illusion31 @Keshavan3107
14 Followers 3K Following Security Researcher | Bug Hunter | VAPT | Pentest | Red Teaming | Liverpool FC | CR7 |
Krzysztof Flis @Pan_Cyferka
66 Followers 1K Following
MalwareAvid @AvidMalware
5 Followers 224 Following
Lukasz Jachowicz @ljachowicz
1K Followers 401 Following infosec guy || podcaster || former member of IT Council - Ministry for IT
Apuuud @Apuuuuud
5 Followers 148 Following
beleth @_hidden_beleth
0 Followers 302 Following
AxN788CN @TranTuan3042022
0 Followers 4K Following
Mezaz Laura @MezazLaura
1 Followers 145 Following
e @e095611
1 Followers 76 Following
KamilU @Kamil98u
5 Followers 177 Following
Tomasz Wodziński @SecureCerte
120 Followers 925 Following IT Auditor, enthusiast information systems security, scrutiny and risks evangelist
USCYBERCOM Cybersecur... @CNMF_CyberAlert
70K Followers 80 Following This is Cyber National Mission Force’s alert mechanism to contribute to our shared global cybersecurity (Following, retweets and links do not equal endorsement)
/ˈziːf-kɒn/ @x33fcon
7K Followers 1 Following When Red meets Blue... The very first security conference for Purple Teams on the planet
mak @maciekkotowicz
3K Followers 97 FollowingTrends for United States
You might like
