KernelMode.info

dumb110

here you go

dumb110

Thanks Ants! I have already seen some of those samples.Let me know if anyone finds more.

dumb110

Can someone find me a good amount of samples for amadey stealer.I looked up virustotal and only found 4. here are some ioc's: hxxp://gucciai.net/CC/index.php hxxp://onedrive.one/index.php hxxp://51.15.248.152/index.php hxxp://185.142.236.220/made/index.php hxxp://95.179.147.35/index.php hxxp://163.1...

dumb110

Can someone give me a copy of this:
https://www.virustotal.com/#/file/f6678 ... 5e/details

+ the unpacked version of it...its upx packed from VT details.

dumb110

Thanks Ants

dumb110

Hashes are in text file.
Anything is well appreciated.Thanks in advance!

I would love to have the actual infection chain files + the associated malicious docdownloaders and payloads as given in the file.

dumb110

https://www.virustotal.com/#/file/842f5 ... /detection

Please

dumb110

if you look at this "attack", you can see that this is a PR action of another "next-gen" "security" company, they took an idea from a Recon 2015 presentation and turned it into a PR media-hack, the technique they describe is so "undocumented" if you want to use this "attack", you need to write into ...

dumb110

https://www.virustotal.com/en/file/0e23 ... /analysis/

I am looking for the above sample specifically

Thanks in advance

dumb110

https://www.reverse.it/sample/4e60f3c8e ... mentId=100

KernelMode.info

Search found 122 matches

Re: GX40 Ransomware

Re: Amadey Stealer

Amadey Stealer

Shade Ransomare binary+unpacked request

Re: EITest>H1N1/Zebprox request

EITest>H1N1/Zebprox request

Request

Re: Cybellum - another pseudo security company from Israel

Sample

Alphabet Ransomware