Common Information
| Type | Value |
|---|---|
| Value |
ekrn.exe |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-16 | 54 | Silent Threat: How Red Team Tools EDRSilencer Can Disrupt Enterprises Endpoint Security Solutions | ||
| Details | Website | 2024-10-23 | 76 | Embargo ransomware: Rock’n’Rust | ||
| Details | Website | 2024-10-15 | 62 | Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions | ||
| Details | Website | 2024-07-30 | 11 | Zero Day Initiative — Breaking Barriers and Assumptions: Techniques for Privilege Escalation on Windows: Part 2 | ||
| Details | 2024-04-29 | 336 | Bitdefender-Report-Confidential-DeepDive-creat7721-en_EN | |||
| Details | Website | 2024-04-24 | 180 | [QuickNote] Qakbot 5.0 – Decrypt strings and configuration | ||
| Details | Website | 2023-11-07 | 183 | Computer slow, network issues - Virus, Trojan, Spyware, and Malware Removal Help | ||
| Details | Website | 2023-10-11 | 99 | Qakbot evolves to OneNote Malware Distribution | ||
| Details | Website | 2023-10-03 | 39 | Technical Analysis of HijackLoader | ||
| Details | Website | 2023-07-18 | 258 | NemesisProject | ||
| Details | Website | 2023-05-31 | 146 | Lancefly APTグループ、カスタムバックドアで政府や航空部門などの組織を標的に | ||
| Details | Website | 2023-05-15 | 148 | Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors | ||
| Details | Website | 2023-03-24 | 72 | Bypassing Qakbot Anti-Analysis | ||
| Details | Website | 2022-12-01 | 87 | From Macros to No Macros: Continuous Malware Improvements by QakBot | ||
| Details | 2022-09-20 | 260 | What the Quack | |||
| Details | Website | 2022-08-31 | 634 | LUNA Ransomware Attack Pattern Analysis — Elastic Security Labs | ||
| Details | Website | 2022-07-11 | 53 | SELECT XMRig FROM SQLServer | ||
| Details | Website | 2022-06-06 | 51 | Will the Real Msiexec Please Stand Up? Exploit Leads to Data Exfiltration | ||
| Details | Website | 2022-05-05 | 65 | “请问,俄乌冲突将如何影响半岛局势?” APT组织Kimsuky近期定向攻击活动分析 – 绿盟科技技术博客 | ||
| Details | Website | 2022-03-22 | 67 | Operation Dragon Castling: APT group targeting betting companies - Avast Threat Labs | ||
| Details | Website | 2021-12-01 | 192 | Toss a Coin to your Helper (Part 2 of 2) - Avast Threat Labs | ||
| Details | Website | 2021-03-18 | 243 | [RE021] Qakbot analysis – Dangerous malware has been around for more than a decade | ||
| Details | Website | 2020-12-15 | 74 | QakBot reducing its on disk artifacts - Hornetsecurity | ||
| Details | Website | 2020-09-02 | 63 | KryptoCibule: The multitasking multicurrency cryptostealer | WeLiveSecurity | ||
| Details | Website | 2020-05-21 | 108 | No “Game over” for the Winnti Group | WeLiveSecurity |