Common Information
| Type | Value |
|---|---|
| Value |
ntdll.dll |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2023-05-25 | 48 | Operation Magalenha | Long-Running Campaign Pursues Portuguese Credentials and PII | ||
| Details | Website | 2023-05-23 | 30 | Acheron - Indirect Syscalls For AV/EDR Evasion In Go Assembly - RedPacket Security | ||
| Details | Website | 2023-05-22 | 44 | Back in Black: BlackByte Ransomware returns with its New Technology (NT) version | ||
| Details | Website | 2023-05-22 | 63 | Elastic Security Labs steps through the r77 rootkit — Elastic Security Labs | ||
| Details | Website | 2023-05-15 | 1 | Introducing CS2BR pt. I – How we enabled Brute Ratel Badgers to run Cobalt Strike BOFs | ||
| Details | Website | 2023-05-06 | 17 | TryHackMe| Abusing Windows Internals | ||
| Details | Website | 2023-05-03 | 125 | I got infected by a trojan probably - Virus, Trojan, Spyware, and Malware Removal Help | ||
| Details | Website | 2023-05-02 | 2 | Netskope Threat Coverage: CrossLock Ransomware | ||
| Details | Website | 2023-05-02 | 4 | AresLoader Malware Attacking Citrix Users Through Malicious GitLab Repo | ||
| Details | Website | 2023-05-02 | 78 | Attack on Security Titans: Earth Longzhi Returns With New Tricks | ||
| Details | Website | 2023-05-01 | 173 | Potential Malware issue: Unrecognized browser extensions and win guest account. - Virus, Trojan, Spyware, and Malware Removal Help | ||
| Details | Website | 2023-05-01 | 47 | SeroXen RAT for sale | ||
| Details | Website | 2023-04-28 | 32 | Citrix Users at Risk: AresLoader Spreading Through Disguised GitLab Repo | ||
| Details | Website | 2023-04-20 | 481 | ATT&CK Changes | ||
| Details | Website | 2023-04-18 | 26 | Raspberry Robin: Anti-Evasion How-To & Exploit Analysis - Check Point Research | ||
| Details | Website | 2023-04-18 | 28 | CrossLock Ransomware Emerges: New GoLang-Based Malware On the Horizon | ||
| Details | Website | 2023-04-13 | 210 | Possible Malware slowing Computer Down? - Virus, Trojan, Spyware, and Malware Removal Help | ||
| Details | Website | 2023-03-30 | 19 | Sophisticated APT29 Campaign Abuses Notion API to Target the European Commission | ||
| Details | Website | 2023-03-28 | 82 | New Build random BSOD/Crashing - Windows Crashes and Blue Screen of Death (BSOD) Help and Support | ||
| Details | Website | 2023-03-27 | 9 | Rhadamanthys: The “Everything Bagel” Infostealer - Check Point Research | ||
| Details | Website | 2023-03-20 | 12 | When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule | ||
| Details | Website | 2023-03-15 | 243 | DotRunpeX - demystifying new virtualized .NET injector used in the wild - Check Point Research | ||
| Details | Website | 2023-03-09 | 19 | Sophisticated APT29 Campaign Abuses Notion API to Target the European Commission | ||
| Details | Website | 2023-03-08 | 30 | A Noteworthy Threat: How Cybercriminals are Abusing OneNote – Part 2 | ||
| Details | Website | 2023-02-15 | 80 | Hunting Cyber Evil Ratels: From the targeted attacks to the widespread usage of Brute Ratel - Yoroi |