Microsoft Word and Sandboxes Today's post is a brief one on some Microsoft Word and sandbox detection / discovery / fun.Collect... 2024-8-15 01:45:17 | 阅读: 9 | 收藏 | Over Security - Cybersecurity news aggregator - bartblaze.blogspot.com microsoft username asd sandboxes userinfo

New North Korean based backdoor packs a punch 2024-6-21 05:10:0 | 阅读: 11 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com

Analyse, hunt and classify malware using .NET metadata IntroductionEarlier this week, I ran into a sample that turned out to be PureCrypter, a loader and... 2024-3-26 03:13:0 | 阅读: 8 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com mvid typelib f0 python quasar

Fara: Faux YARA FARA, or Faux YARA, is a simple repository that contains a set of purposefully erroneous Yara rules... 2023-12-5 03:15:17 | 阅读: 7 | 收藏 | Over Security - Cybersecurity news aggregator - bartblaze.blogspot.com fara faux github bartblaze veterans

Yara rules collection Quite a while ago, I've published some of my private Yara rules online, on Github. They can be foun... 2022-12-10 23:20:0 | 阅读: 4 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com github workflows natively convenience artifacts

Digital artists targeted in RedLine infostealer campaign 2021-06-17: updated with information from Twitter user ARC In this post, we'll look at a campaign,... 2021-6-15 03:30:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com attacker redline tweet windows machine

Blue Team Puzzle Several years ago, I created a "malware puzzle" - basically, a crossword puzzle but with terms rela... 2020-11-24 04:33:0 | 阅读: 5 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com puzzle crossword bartblaze mediafire mirror

Satan ransomware rebrands as 5ss5c ransomware The cybercrime group that brought us Satan, DBGer and Lucky ransomware and perhaps Iron ransomware... 2020-1-15 06:48:0 | 阅读: 12 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com ransomware 5ss5c satan spreader cpt

Monero download site and binaries compromised Earlier this evening I saw a tweet appear which claimed Monero has been hacked and a malicious bi... 2019-11-20 06:18:0 | 阅读: 4 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com monero windows filehash getmonero c2

Run applications and scripts using Acer's RunCmd This weekend I was cleaning up an old Acer laptop of mine and discovered a hidden folder on the ro... 2019-3-18 05:17:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com runcmd 02d 193c acer attackers

Analysing a massive Office 365 phishing campaign Last week, a friend of mine reached out with a query: a contact in his address book had sent him a... 2019-3-5 03:57:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com phishing attacker o365 microsoft

MAFIA ransomware targeting users in Korea A new ransomware family was discovered and sent to me by MalwareHunterTeam, which we'll call MAFIA... 2018-8-12 23:31:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com mafia ransomware korean appcheck c2

RedEye ransomware: there's more than meets the eye A rather anonymous account reached out to me on Twitter asking to check out a "scary & really nas... 2018-6-7 06:30:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com ransomware redeye mbr annabelle icorex

PSCrypt ransomware: back in business PSCrypt is ransomware first discovered last year, in 2017, targeting users and organisations alike... 2018-5-7 19:45:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com windows ransomware pscrypt btc не

Vietnamese ransomware wants you to add credit to a mobile phone In this quick blog post we'll have a look at BKRansomware, a Vietnamese ransomware that wants you... 2018-5-6 01:20:0 | 阅读: 7 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com ransomware vietnamese viettel hainhc

Ransomnix ransomware variant encrypts websites Ransomnix is a (supposedly Jigsaw, but not really) ransomware variant that holds websites for ran... 2018-4-28 22:27:0 | 阅读: 10 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com ransomware btc tips ransomnix

Satan ransomware adds EternalBlue exploit Today, MalwareHunterTeam reached out to me about a possible new variant of Satan ransomware.Sata... 2018-4-22 08:48:0 | 阅读: 6 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com satan ransomware windows sts client

This is Spartacus: new ransomware on the block In this blog post, we'll analyse Spartacus, one of many new ransomware families popping up in 2018... 2018-4-15 23:56:0 | 阅读: 5 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com spartacus ransomware popping thrid

CryptoWire ransomware not dead CryptoWire is an "open-source" ransomware based on the AutoIT scripting language, and has been aro... 2018-4-13 04:55:0 | 阅读: 7 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com cryptowire ransomware bmp xlsx

Maktub ransomware: possibly rebranded as Iron In this post, we'll take a quick look at a possible new ransomware variant, which appears to be t... 2018-4-11 03:15:0 | 阅读: 4 | 收藏 | Blaze's Security Blog - bartblaze.blogspot.com ransomware iron maktub locker satan