9618
Group for Malware Analysts. Pinned message with resources and rules: https://t.me/MalwareResearch/38033
Parmanu [1113907741] is currently banned in Libra's Empire.
Reason:
cracks
Date of ban: 25/02/2023
FedAdmin: ❤🦦
The following federations have caused Parmanu to be banned in chats:
- b578caf1-07e7-4e92-9226-f69346180d99: Libra's Empire
If you would like to know more about the fedban reason in a specific federation, use /fbanstat <UserID> <FedID>.
User info:
ID: 1113907741
First Name: Parmanu
Username: @parmanoo
User link: link
Status: banned
This user has been fbanned in the current fed, Libra's Empire.
Reason: cracks
User Parmanu is banned in the current federation (Libra's Empire), and so has been removed.
Reason: cracks
Hello Sagor, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Hello @MEERFARAZ787, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Maybe if this is feasible, we can keep a track of the campaign before they are used ITW
Читать полностью…
guys anyone came across this threat actor? BigLongsOFC
Читать полностью…
Hello everyone. Does anyone have the opportunity to get this sample from VT?
https://www.virustotal.com/gui/file/149de16f4ad233aded60c11057ad054bbac77e90c5554b9f96ab89420777f662
Hello amiin, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Hello @Lorddevilhunter, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
/fbanstat @parmanoo b578caf1-07e7-4e92-9226-f69346180d99
Читать полностью…
Hello Roshan, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Hello @apostol0s, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
There have many opinion in I have seeing, let me share my experinece.
You may install the EDR agent in endpoint and perform attack using Atomic Red Team https://atomicredteam.io/
In our office, when we take trail for huntress, I tested in VM. also, caldera, spider monkey etc. advisory emulation you may use. Which actually purple teaming, for understood the capability of defender product like EDR.
And bitter truth, no EDR is the BEST of BEST. They have lackings, they try to improve to beat the hackers. Thanks.
Recently I have been monitoring a simple yet very busy stealer abusing github as its downloader for second stager
Читать полностью…
Folks do let me know if I am wrong, but do we have any tool, " which can help us search certain code fragements on github, on a daily basis, like lets say, I wanna search "H-e-l-l-o,W_o_r_l_d" content ovet entire github code repositories and on a daily basis, and once we have any new repo updating this content, we get a hit or a notification.."
Читать полностью…
refer to the previous warning, else the next one will be a ban
Читать полностью…
or Google/Youtube something like this - https://bluecapesecurity.com/courses/free-emotet-maldoc-analysis/
Читать полностью…