We've updated the vx-underground paper collection
- 2022-12-23 - (Yet another) Simple PE Loader
- 2023-08-16 - Understanding Syscalls Direct & Indirect
- 2023-07-15 - Unveiling Secrets in Binaries using Code Detection Strategies
Check it out here: https://www.vx-underground.org/
- 2022-12-23 - (Yet another) Simple PE Loader
- 2023-08-16 - Understanding Syscalls Direct & Indirect
- 2023-07-15 - Unveiling Secrets in Binaries using Code Detection Strategies
Check it out here: https://www.vx-underground.org/
❤25🫡15👍5👏1💯1
Today it was reported an unknown Threat Actor successfully compromised Poland's railway system.
The Threat Actors triggered an emergency stop signal which brought 20 trains to a stop near the city of Szczecin
More information: https://www.bbc.com/news/world-europe-66630260
The Threat Actors triggered an emergency stop signal which brought 20 trains to a stop near the city of Szczecin
More information: https://www.bbc.com/news/world-europe-66630260
Bbc
Poland investigates cyber-attack on rail network
Hackers briefly disrupted some train services, amid suggestions that the attack came from Russia.
🫡60😱21🤣17🤔5🤪3❤2😁2😢2👍1
Russian law enforcement have begun arresting hackers in Russia.
June, 2023 - Six individuals in Rostov arrested for identity theft
August, 2023 - Malware developer from Krasnodar arrested, sentenced to 5 years in prison
All arrested committed crimes to NATO countries 🤔
June, 2023 - Six individuals in Rostov arrested for identity theft
August, 2023 - Malware developer from Krasnodar arrested, sentenced to 5 years in prison
All arrested committed crimes to NATO countries 🤔
😢90🤔58🤣50🫡16🤯13😁10👍5❤2🔥2❤🔥1🤪1
We are receiving reports from people in the greater Los Angeles area that they are unable to retrieve content from vx-underground. They are informing us Spectrum (their ISP) has blackholed vx-underground's CDN which is samples.vx-underground.
Using Google DNS resolves the issue
Using Google DNS resolves the issue
🤣103🤪12🤔9👍5🔥4😱4💯3😁2
Hello,
A kind soul informed us that Spectrum has issued a company wide block on our CDN samples.vx-underground.
Spectrum labeled us as such because Akamai ThreatAvert has labeled us as malicious.
Akamai employees: please fix this 🥺
A kind soul informed us that Spectrum has issued a company wide block on our CDN samples.vx-underground.
Spectrum labeled us as such because Akamai ThreatAvert has labeled us as malicious.
Akamai employees: please fix this 🥺
👍61😢14🤣10😱9🥰5🎉3
We've updated the vx-underground malware sample collection
- AresLoader
- Remcos
- CobaltStrike
- CerberRansomware
- Emotet
- Limerat
- AgentTesla
- RedLine
- Gopuram
- RedCap
- TrickBot
- FormBook
- QakBot
Check it out here: https://www.vx-underground.org
- AresLoader
- Remcos
- CobaltStrike
- CerberRansomware
- Emotet
- Limerat
- AgentTesla
- RedLine
- Gopuram
- RedCap
- TrickBot
- FormBook
- QakBot
Check it out here: https://www.vx-underground.org
❤🔥38❤8👍8🔥1
Hello,
Special thanks to the wonderful people at Akamai - they removed the block on our domain. Spectrum users should (eventually) be able to access our CDN soon once things are updated on their end.
Thank you everyone who helped us. Love you 😘
Special thanks to the wonderful people at Akamai - they removed the block on our domain. Spectrum users should (eventually) be able to access our CDN soon once things are updated on their end.
Thank you everyone who helped us. Love you 😘
❤71🔥12👍4🤣4❤🔥3😘3💯2😁1🤩1
Arm has sent Azeria Fox a cease-and-desist letter for 'copyright infringement'. Arm will own 4 of her domains related to Arm reverse engineering, internals, basics, and exploitation. Her blog (https://azeria-labs.com) is also currently blocked. They may soon discontinue her book.
😢70🤯19🙏5👍4😱4❤3🤔1
Today the Federal Bureau of Investigation announced they have dismantled the Qakbot botnet. Qakbot has been one of the longest standing botnets in history, dating back to 2011.
FBI Director Christopher Wray made an announcement regarding the takedown: https://www.youtube.com/watch?v=mIeUT0QmqfU
FBI Director Christopher Wray made an announcement regarding the takedown: https://www.youtube.com/watch?v=mIeUT0QmqfU
YouTube
FBI Director Christopher Wray Announces Major Operation Targeting the Qakbot Botnet
For a full transcript and download, visit: https://www.fbi.gov/video-repository/director-wray-announcement-qakbot-082923.mp4/view
---------------------------------------------------
Subscribe to Inside the FBI wherever you get your podcasts:
Spotify: htt…
---------------------------------------------------
Subscribe to Inside the FBI wherever you get your podcasts:
Spotify: htt…
🫡50🤣24❤5😢5👍2
Initial discovery as a banking trojan goes as far back as 2007*, others state 2008*, some note the current instance of the known Qakbot as starting in 2015 or 2016*
Malware analysts all across the world will proclaim today an internationally recognized holiday.
Malware analysts all across the world will proclaim today an internationally recognized holiday.
👏32🤣26❤5💯4
Arm sent cease-and-desist letters to Azeria Fox for the domain names containing the word 'arm'. Thankfully their jackass lawyers can't claim leg 😂
https://leg-assembly.com/
https://leg-assembly.com/
Leg-Assembly
Book Launch: Arm Assembly & Reverse Engineering
Order your copy of Blue Fox
🤣105❤14👍8👏8😁3💯2🫡2🔥1
We've updated the vx-underground malware sample collection... sort of?
We've added FBI Operation Duck Hunt 'Untether'. This is the payload the FBI deployed to untether infected machines from the QakBot botnet =D
Check it out here: https://www.vx-underground.org/
We've added FBI Operation Duck Hunt 'Untether'. This is the payload the FBI deployed to untether infected machines from the QakBot botnet =D
Check it out here: https://www.vx-underground.org/
❤52🔥11🤪4❤🔥3😁2👍1💯1