Category: Malware
-
Detecting Amadey Malware With Zeek – Zeek Roulette #2
For my Zeek Roulette #2 I picked a recently submitted sample off of ANY.Run that ended up being Amadey: https://app.any.run/tasks/31ba58da-30d1-4a08-940d-2412fc629221/ You can download the PCAP from the link above if you navigate…
-
Russian Charged With Ransomware Attacks – eCrimeBytes Nibble #39
Ten years now and ransomware is still going strong. The United States charged a Russian named Mikhail Pavlovich Matveev (aka Wazawaka, aka m1x, aka Boriselcin, aka Uhodiransomwar) with three ransomware attacks. The…
-
njRAT/Bladabindi Zeek Detector Update – Zeek Roulette #1 Part 2
This is an update to: Detecting njRAT/Bladabindi Malware With Zeek – Zeek Roulette #1 I have been running this detector on a live network for a while and I’ve seen 2 (rare)…
-
Detecting njRAT/Bladabindi Malware With Zeek – Zeek Roulette #1
Welcome to the first edition of Zeek Roulette, where I pick a random Zeek topic and try to solve it! For this article I picked njRAT malware from Any.Run and tried to…