Mastodawn

Tech Cybersecurity Nieuws Nov 13, 2024

Nieuwe ymir-ransomware werkt samen met rustystealer in cyberaanvallen https://www.trendingtech.news/trending-news/2024/11/47450/nieuwe-ymir-ransomware-werkt-samen-met-rustystealer-in-cyberaanvallen #Ymir #ransomware #RustyStealer #cyberaanval #informatie-diefstal #Trending #News #Nieuws

James_inthe_box Apr 5, 2024

Some fresh #rustystealer:

https://app.any.run/tasks/12ebfc62-a66e-4d87-9d4a-ea22d8a82ef1

Analysis 1a8023c76e45b0145f1c28753efc1d5409a0ac2a1c6fdbab2022e737dcaa0ab5.exe (MD5: 422AD9C53A86F687B230FDE951FB5856) Malicious activity - Interactive analysis ANY.RUN

Interactive malware hunting service. Live testing of most type of threats in any environments. No installation and no waiting necessary.

𝙽𝙴𝚃𝚁𝙴𝚂𝙴𝙲 Nov 16, 2023

Nice use of #PolarProxy to decrypt TLS C2 traffic from #RustyStealer
https://www.dfirsec.au/different-but-same/

Different Methods, Same Results

Introduction During my free time I enjoy doing some light malware analysis, utilising sites like MalwareBazaar, any.run, vx-underground, etc to obtain samples. Sometimes these samples are good where all the threat actor infrastructure is still active, which leads to some interesting analysis and other times these samples are rather

DFIRSec