Unravelling an 8+ stage malware sample that leads to the installation of a DarkGate Loader: (IOCs at the end of the thread 🫡) The malware execution chain begins with the Windows Shortcut (link) file, 1040doc_pdf.lnk (1/x)

RT @DaveLikesMalwre: 📁AppDomain Manager Injection via LNK 1/🧵 Today I found an interesting campaign utilising a double extensioned LNK fi…

@InfoSecHarry @hackthebox_eu @charliek65 Thank you for joining me! You smashed it 🫡

RT @InfoSecHarry: Cheltenham @hackthebox_eu Meet-up January 2025 Great opportunity to network with industry professionals, explore some ha…

RT @therealshodan: Want to get good at cyber security then play CTFs. Every Single One You’ll iterate and fail fast. You’ll be exposed to…

RT @dipotwb: Suspected initial access malware spreading via fake captcha, utilising trycloudflare domains

RT @BSidesExeter: 🚨 Lanyard Sponsor Wanted! Fancy your business' logo on one of the most collectable lanyards in cyber security events bus…

RT @bsidesncl: What is Steganography? Curious about it's history? Want to know about the least significant bit and how it can be used to di…

RT @reprise_99: Ok, now we're talking

RT @xorJosh: Suspected Lumma Stealer spreading via fake Crypto Currency analysis telegram group using @SafeguardRo…

RT @BushidoToken: New Blog! Analysis of Counter-Ransomware Activities in 2024

Either way, this was interesting to see, and I thought it was worth sharing anyway :) Hope you enjoyed the analysis. (16/x)