SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms.
en
Back
Category

Labs

Crimeware

Revealing the Trick | A Deep Dive into TrickLoader Obfuscation
Jason Reaves /

TrickBot’s loader has received much less attention than other components of the malware. Jason Reaves shows how to reverse engineer the TrickLoader function.

Read More
Advanced Persistent Threat

DPRK Hidden Cobra Update: North Korean Malicious Cyber Activity
Jim Walter /

New threat intelligence on the ever-expanding toolset of North Korean APT Hidden Cobra (Lazarus) including IoCs for RATs, beacons, persistence and more.

Read More
Security & Intelligence

Pro-Russian CyberSpy Gamaredon Intensifies Ukrainian Security Targeting
Vitali Kremez /

Read how the Gamaredon group wages a silent cyber war against the Ukraine even when all other domains are denied by the strategic or political framework.

Read More
Crimeware

New Snake Ransomware Adds Itself to the Increasing Collection of Golang Crimeware
Jim Walter /

The ransomware crime spree continues with threat actors increasingly turning to Golang as their language of choice. New entrant Snake is just the latest.

Read More
Crimeware

Top-Tier Russian Organized Cybercrime Group Unveils Fileless Stealthy “PowerTrick” Backdoor for High-Value Targets
Vitali Kremez /

SentinelLabs developed mock command-and-control panels to allow the institutions to utilize them for testing detections related to “PowerTrick”

Read More
Adversary

Anchor Project | The Deadly Planeswalker: How The TrickBot Group United High-Tech Crimeware & APT
Vitali Kremez /

The Wind of Time Shakes the Underground | High-Tech Cybercrime & APT | Most Sophisticated & Resourceful Crimeware Group

Read More
Security Research

Privilege Escalation | macOS Malware & The Path to Root Part 1
Phil Stokes /

Researchers invest huge amounts of effort to uncover privilege escalations and develop exploits. What can we learn about macOS security from their work?

Read More
Security & Intelligence

How AdLoad macOS Malware Continues to Adapt & Evade
Phil Stokes /

AdLoad adware evades Apple’s built-in protections, installs man-in-the-middle proxy & multiple persistence agents to thwart removal. Here’s how to fight it.

Read More
Crimeware

How TrickBot Malware Hooking Engine Targets Windows 10 Browsers
Vitali Kremez /

Vitali Kremez revealing how TrickBot’s hooking engine targets Chrome, Firefox, Explorer and Edge in Windows 10

Read More
Crimeware

Writing Malware Traffic Decrypters for ISFB/Ursnif
Daniel Bunce /

Daniel Bunce explains how to decrypt traffic between an attacker’s C2 and an endpoint infected with ISFB malware

Read More
1 14 15 16 17 18