Malware News

2021-03-04 20:40:16 Deobfuscate Malicious VBScript!
stryker2k2


@malwr Open / Comment

2021-03-04 20:32:01 XLM + AMSI: New runtime defense against Excel 4.0 macro malware - Microsoft Security
digicat


@malwr Open / Comment

2021-03-04 20:27:22 Lazarus Group’s MATA Framework Leveraged to Deploy TFlower Ransomware
digicat


@malwr Open / Comment

2021-03-04 20:24:31 ATTACK&DEFENCE VERIFICATION AUTOMATION
https://medium.com/@92.murat.o/attack-defence-verification-automation-d129c33465a2
FinchAndrei

Nice approach and integration. Only downside - the tools involved come in with a 6-digit USD/year price tag - for smaller teams and budgets an oss oriented implementation could be welcomed, e.g. using Shuffle as the SOAR tool, etc.

https://github.com/frikky/shuffle
vornamemitd


@malwr Open / Comment

2021-03-04 20:15:58 Deception Engineering: exploring the use of Windows Service Canaries against ransomware
digicat


@malwr Open / Comment

2021-03-04 18:51:52 New in Ransomware: AlumniLocker, Humble Feature Different Extortion Techniques
ajokewaitingtohappen


@malwr Open / Comment

2021-03-04 18:51:09 Threat Assessment: Active Exploitation of Four Zero-Day Vulnerabilities in Microsoft Exchange Server
quellaman


@malwr Open / Comment

2021-03-04 18:48:32 Windows Forensics Investigation | TryHackMe Investigating Windows
MotasemHa


@malwr Open / Comment

2021-03-03 21:59:01 A Guide to Ghidra Scripting Development for Malware Researchers
https://labs.sentinelone.com/a-guide-to-ghidra-scripting-development-for-malware-researchers/
Cyberthere


@malwr Open / Comment

2021-03-03 20:56:59 Investigating and Recovering a hacked machine | TryHackMe Recovery
MotasemHa


@malwr Open / Comment