| Date | Author | Title |
|---|---|---|
| 2022-12-18 | Guy Bruneau | Infostealer Malware with Double Extension |
| 2022-08-11 | Xavier Mertens | InfoStealer Script Based on Curl and NSudo |
| 2022-04-06 | Brad Duncan | Windows MetaStealer Malware |
| 2022-03-23 | Brad Duncan | Arkei Variants: From Vidar to Mars Stealer |
| 2022-03-09 | Xavier Mertens | Infostealer in a Batch File |
| 2021-12-21 | Xavier Mertens | More Undetected PowerShell Dropper |
| 2021-12-01 | Xavier Mertens | Info-Stealer Using webhook.site to Exfiltrate Data |
| 2021-07-09 | Brad Duncan | Hancitor tries XLL as initial malware file |
| 2021-06-30 | Brad Duncan | June 2021 Forensic Contest: Answers and Analysis |
| 2021-04-06 | Jan Kopriva | Malspam with Lokibot vs. Outlook and RFCs |
| 2021-03-31 | Xavier Mertens | Quick Analysis of a Modular InfoStealer |
| 2019-11-27 | Brad Duncan | Finding an Agent Tesla malware sample |
| 2019-10-09 | Brad Duncan | What data does Vidar malware steal from an infected host? |
| 2019-01-24 | Brad Duncan | Malspam with Word docs uses macro to run Powershell script and steal system data |
| 2017-03-08 | Xavier Mertens | Not All Malware Samples Are Complex |
Internet Storm Center
© 2023 SANS™ Internet Storm Center
Developers: We have an API for you! 