Olivia
Online
Alex
@cryptogramfan
Joined May 2019
543 Following
298 Followers
43 Posts
Pinned Tweet
We’ve just published YARA rules and Python scripts to our GitHub that detects and extracts #IcedID and #BazaLoader malware from Excel add-in (#XLL) files.
New #PurpleFox EK campaign spotted in the wild.
An IE Exploit was hosted on this domain:
hxxps://feneffecsdoteteat.aixgedbubirtsabkhotsswse[.]shop
C2 (registered on 25/07/2021):
hxxps://8ze[.]me/u.php?id=1
![hpsecurity's tweet photo. New #PurpleFox EK campaign spotted in the wild.
An IE Exploit was hosted on this domain:
hxxps://feneffecsdoteteat.aixgedbubirtsabkhotsswse[.]shop
C2 (registered on 25/07/2021):
hxxps://8ze[.]me/u.php?id=1 https://t.co/4dh25lB8tl](https://pbs.twimg.com/media/E7NojPmXsAAj2yG.jpg)
We’re super excited to share our research into #opendir malware hunting and announce a new framework at #VBLOCALHOST @virusbtn this October! Hope to see many of you there.
#PurpleFox EK now exploits CVE-2021-26411, demonstrating a short PoC-to-ITW time. On 12 April we isolated a sample from a HP Sure Click Enterprise customer in the Middle East. More details in our write-up by @stoerchl on the HP Threat Research blog.
https://t.co/VZnIqgO29u
We saw high volumes of #Dridex malspam last week, showing up as three groups when clustering samples by filename similarity.
Bromium's Patrick Schläpfer explains how to extract payload URLs from Dridex samples and provides a python script to do that https://t.co/sqoYfD6Nae
We're pleased to share the HP-Bromium Threat Insights Report for July 2020. Highlights include a look at the top document malware file types and office exploits we've seen in 2020 so far, and insights into recent #Aggah, #QakBot and #WannaMine campaigns.
https://t.co/aMsu2nZYfr
Here's my write-up on changes to the #Aggah malspam campaign which looks at their mail infrastructure, lures, targets, PowerPoint Add-In dropper and Bitcoin stealer.
In May, the attackers behind the #Aggah malicious spam campaign impersonated B2B companies in Europe, the Middle East and Asia to compromise businesses. They also adopted a PowerPoint dropper and cryptocurrency stealer. https://t.co/Wg6UbXTwls
At present we still intend to run the event at the end of July. We are monitoring the situation and will make a final call over the coming month.
SPONSORS. We need your support. See our Sponsor Information Pack and levels available on our website. https://t.co/KWuuP4ZoOD Let's make this happen!
Extremely informative overview of reverse engineering of “Ransomware as a Service” #Buran by @cryptogramfan @bromium for Joint @BcsForensics @owasp @OwaspCambs @ARUCyberRes “Aspects Of Digital Forensics” Workshop @AngliaRuskin @aru_fse #cambridge on Wednesday 19th Feb
The CfP for #bsidesbristol is officially open. This year we're accepting shorter talks (20 mins) as well as regular presentations (45 mins, including Q&A). If it's your first time presenting, we also have friendly mentors on hand to give advice and feedback.
Save the date... 29th and 30th July 2020 BSides Bristol is back! And our Call for Presentations is now open - get submitting! https://t.co/k2ZuCYspwn
Direct link to script: https://t.co/QBvPtlO1qo
#Emotet malspam activity resumed on 13 January 2020. This festive period its actors took a 21 day break, compared with 23 days in 2018/19. cc @Cryptolaemus1 @abuse_ch
If you're interested in malware analysis & RE, I highly recommend the #Zero2Hero course by @VK_Intel and @0verfl0w_. Props to @SentinelOne for releasing ~7 hrs of content for free. It's community contributions like these that close the gap between defensive & offensive capability
@QW5kcmV3 My sources suggest the term has military origins. Earliest reference I could find is R. E. Conley: Military Command and Control (c2) (Signal, Vol 33 No 4, Jan 1979, p 14). The Joint Doctrine for Command and Control Warfare (C2W) from 1996 also uses it:
https://t.co/ux8PWmXAN5
Tracking Malware Campaigns Using String Metrics:
https://t.co/TtCJ1q60mG
#malware
Last Seen Users on Sotwe
türbanlı ifşa sex 🔥
Seen from Turkey
genc_cift35İzmir
Seen from Turkey
OneFootball Club 
Seen from United Arab Emirates
hazal
Seen from Turkey
𝙴𝚕 𝙶ü𝚎𝚛𝚘
Seen from United States
凛🐻❄️
Seen from Japan
пустая восьмерка
Seen from Indonesia
baranx
Seen from Turkey
Lunacharsky
Seen from Italy
kalkan
Seen from Turkey
Most Popular Users
Elon Musk
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.3M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.5M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.2M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers