Rezultati pretraživanja
  1. prije 2 sata

    DOCX files launch powershell.exe with BASE64 parameter, which is merged from (amongst other) document's variables, that are not part of the VBA itself. How to dump these variables? Cc Sample: 9CC6AE3B001A67E54C8DD44B998B2ADD0F7E0D3DA5DEA3EBDCDA12F4DCCD5136

  2. Two part blog post about modules. The first part gives an overview of the modules in general and how the payload encryption of wrapper modules (e.g. the ones comprising WebBrowserPassView or MailPassView) works.

  3. 29. sij
  4. prije 2 sata

    Sometimes makes mistakes... Here's their filename generation regex...

    Prikaži ovu nit
  5. 30. sij

    Interested in learning how to debug macros or learn more about the structure of user forms? In my latest video, I show you how to use the Office IDE to debug a recent

  6. New utility tool will allow users to detect systems infected with malware trojan >>

  7. prije 39 minuta
  8. Current Epoch 1 C2 endpoints

  9. Check out how CST Responds to an attack! Is your secure?

  10. prije 9 sati

    E1 template this morning product_notice

  11. prije 11 sati

    AAR for 2020/02/04: No malspam received here today but other trustworthy sources say today was a moderate day. Seeing more annoying Medical report reply chain spam. Also big events going on and interesting findings from the Cryptolaemus team. Hopefully more deets soon. TT

  12. prije 11 sati

    New Epoch 3 urls //ga-partnership.com/wp-admin/d0i-2eeblx-9930/ //linkgensci.com/resource/c3eu4q3-b5w2h61rdb-8197/ //baakcafe.com/wp-content/mhkrxe-d2h032l6-5086928236/ s://wieland-juettner.de/tmp/gchr0th5-k14id-888563939/ s://apo-alte-post.de/layouts/pdtCNPBN/

  13. prije 11 sati

    few recent using as outer layer

  14. prije 17 sati

    My new favorite folder. Nice to know someone tracks my time.

  15. Emotet Gets Ready for Tax Season With Malicious W-9 Forms "This week, the Japan CERT released a new tool called EmoCheck that lets you easily check if a computer is infected with Emotet."

    Prikaži ovu nit
  16. prije 20 sati

    New Epoch 2 urls //faro-master.ru/wp-includes/wzx/ //blog.adpubmatic.com/cgi-bin/v0/ //www.40ad.com/tmp/AQA/ //anaracademy.ir/wp-includes/Gcp2mV/ s://procast.nl/wp-admin/uz/

  17. Spam disguises itself as party invites, invoices, voice mails, even invites to a Greta Thunberg event. Make sure your employees are aware of threats, but always have a backup plan. Protect your network at

  18. prije 24 sata

    New Epoch 3 urls //medical.hsh-bh.com/wp-admin/4xmE1404/ s://elifehotel.com/cgi-bin/hzdXtyh/ //ceylongems.konektholdings.com/test/f01D/ s://bankingdb.com/blog/eA/ //modahub.site/wp-admin/Ccq569913/

  19. prije 24 sata

    Also thought its interesting that my lab environment saw Emotet/TrickBot going ham until 07:00am then it dropped off. Thing is it's very much still running and can be seen in the processes. Is it trying to hide?

  20. prije 24 sata

    For anyone looking to blacklist something. TickBot created the task.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.