Lynx Ransomware Analysis; An Advanced Post-Exploitation Ransomware
xande What is Lynx Ransomware? Lynx ransomware is a “fork” of another popular ransomware called “INC”, its source code was supposedly sold on an onion site at some point in the…
A Simple Yet Effective Windows Defender Bypass (Other AV Engines Too!)
Recently when researching different tactics threat actors use to bypass AV (Anti-Virus) engines I discovered this very simple yet effective “bypass”. After learning how to build a relatively basic C++…
Reverse Engineering and Cataloging Vidar (Info stealer/Loader) | Malware Analysis
What is Vidar? Before I discuss my analysis of the sample, here is a quick synopsis and explanation of Vidar and how it functions in the ecosystem of malicious software…
Understanding the Impact of CVE-2024-25227: What You Need to Know and How It was Discovered
I will start by detailing the vulnerability for everyone interested in the specifics, and later discuss how I discovered it and some information about the vendor. ABO.CMS-Login-SQLi-CVE-2024-25227 CVE-2024-25227 Date: 23/02/2024…