S3cur1ty_Guy Says: Thank's for stopping by

Recent Articles PoC's

While you're here: Learn how to protect your assets

Recomended Resources Public domain research

Alina ‘sparks’ source code review

I got on my hands recently the source code of Alina "sparks", the main 'improvement' that everyone is talking about and make the price of this malware rise is the rootkit feature.Josh Grunzweig did already an interesting coverage of a sample, but what worth this new version ?InjectedDLL.c from the…

Alina ‘sparks’ source code review

I got on my hands recently the source code of Alina "sparks", the main 'improvement' that everyone is talking about and make the price of this malware rise is the rootkit feature.Josh Grunzweig did already an interesting coverage of a sample, but what worth this new version ?InjectedDLL.c from the…

Alina ‘sparks’ source code review

I got on my hands recently the source code of Alina "sparks", the main 'improvement' that everyone is talking about and make the price of this malware rise is the rootkit feature.Josh Grunzweig did already an interesting coverage of a sample, but what worth this new version ?InjectedDLL.c from the…

Cryptorbit locker

When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732

Cryptorbit locker

When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732

Cryptorbit locker

When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732

Cryptorbit locker

When Cryptorbit ransomware was targeting people i've visited themSQL database:Bad guy wallets:1H6jc6Mz535zTts6DWdeJf3HdH4owGjsXo15JTKDkU4U6Tn5MBc9Pt52mMzXDmvmaanR18yP3oKzeqChWCYG2ZGPcBhMQBiXFeR2GF17FSkXDULjtK6R9G3cpwmLMYbWRZJ9c8vZ1KZvxpPzvkSCqm3VTffWBWcLumWK1KJfkKPseudo decryptor ~ 4a8e11468649e045976574691cf53732

Captain Barbarossa

Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager:

Captain Barbarossa

Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager:

Captain Barbarossa

Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager:

Captain Barbarossa

Captain Barbarossa, is used for Paypal phishing and sold as phishing kit, the kit include an admin panel.User is tricked with a fake Paypal login asking for details, here in German:Once infos are transmitted the datas are sent to the panel.Login:Main:Log manager: