Article de Elastic Security Labs

Python script to extract the configuration from NETWIRE samples.

Python script to extract the configuration from ICEDID samples.

Python script to extract the configuration from EMOTET samples.

Elastic Security Labs has compiled the 2022 Global Threat Report to share trends and tactics adversaries and attack groups use, as observed by our threat research team and broader user community over the past year.

Python script to extract the payload from PARALLAX samples.

Python script to extract the configuration from QBOT samples.

Python script to extract the configuration and payload from BLISTER samples.

Configuration extractor to dump out hardcoded passwords with BPFDoor.

Python script to identify hosts infected with the BPFDoor malware.