Common Information
| Type | Value |
|---|---|
| Value |
ntdll.dll |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-30 | 5 | Reverse Engineering Firefox and Tor Targeted Payloads — Leviathan Security Group | ||
| Details | Website | 2024-11-15 | 87 | Babble Babble Babble Babble Babble Babble BabbleLoader | ||
| Details | Website | 2024-11-15 | 87 | Babble Babble Babble Babble Babble Babble BabbleLoader | ||
| Details | Website | 2024-11-14 | 7 | T(ROP)H: Thread Hijacking with ROP | ||
| Details | Website | 2024-11-11 | 11 | EDR: Don’t mess with my config | ||
| Details | Website | 2024-11-11 | 39 | Kaspersky discovers new Ymir ransomware used together with RustyStealer | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware | National Cyber Security Consulting | ||
| Details | Website | 2024-11-11 | 46 | «Лаборатория Касперского» обнаружила новый шифровальщик Ymir | ||
| Details | Website | 2024-11-11 | 47 | Ymir: new stealthy ransomware in the wild | ||
| Details | Website | 2024-11-11 | 47 | Kaspersky discovers new Ymir ransomware used together with RustyStealer | ||
| Details | Website | 2024-11-10 | 5 | APC (asynchronous procedure call) | ||
| Details | Website | 2024-11-10 | 15 | Cobalt Strike Beacon Detected - 45[.]14[.]226[.]17:80 - RedPacket Security | ||
| Details | Website | 2024-11-10 | 13 | 使用内核回调表进程注入 | CTF导航 | ||
| Details | Website | 2024-11-09 | 8 | Cobalt Strike Beacon Detected - 147[.]161[.]32[.]14:8443 - RedPacket Security | ||
| Details | Website | 2024-11-07 | 7 | Cobalt Strike Beacon Detected - 91[.]240[.]202[.]191:444 - RedPacket Security | ||
| Details | Website | 2024-11-07 | 66 | European diplomats targeted by APT29 (Cozy Bear) with WINELOADER | ||
| Details | Website | 2024-11-06 | 5 | Cobalt Strike Beacon Detected - 39[.]109[.]122[.]249:8010 - RedPacket Security | ||
| Details | Website | 2024-11-05 | 40 | In-depth analysis of Formbook/Xloader v7.1 | ||
| Details | Website | 2024-11-03 | 6 | Spoofing Call Stacks to Evade EDR Detection | ||
| Details | Website | 2024-11-03 | 54 | Coinminer - Malware Analysis | ||
| Details | Website | 2024-11-03 | 6 | Cobalt Strike Beacon Detected - 101[.]34[.]62[.]232:4433 - RedPacket Security | ||
| Details | Website | 2024-10-31 | 7 | Cobalt Strike Beacon Detected - 45[.]11[.]180[.]200:444 - RedPacket Security | ||
| Details | Website | 2024-10-30 | 10 | เพื่อตัวเอง 01: Windows User Mode vs Kernel Mode | ||
| Details | Website | 2024-10-29 | 6 | Cobalt Strike Beacon Detected - 39[.]109[.]122[.]249:8834 - RedPacket Security | ||
| Details | Website | 2024-10-26 | 14 | .Net Hooking with Frida and Fermion | ||
| Details | Website | 2024-10-26 | 10 | Cobalt Strike Beacon Detected - 43[.]138[.]227[.]194:443 - RedPacket Security |