Dominik Reichel, Author at Unit 42

Conceptual image representing evasive malware such as Cobalt Strike

53,661

people reacted

Blowing Cobalt Strike Out of the Water With Memory Analysis

By Dominik Reichel, Esmid Idrizovic and Bob Jung
December 2, 2022 at 6:00 AM

15 min. read

A conceptual image representing malware, such as IronNetInjector, discussed in this blog, Turla's new malware loading tool.

41,949

people reacted

IronNetInjector: Turla’s New Malware Loading Tool

By Dominik Reichel
February 19, 2021 at 6:00 AM

10 min. read

59,537

people reacted

AcidBox: Rare Malware Repurposing Turla Group Exploit Targeted Russian Organizations

By Dominik Reichel and Esmid Idrizovic
June 17, 2020 at 6:00 AM

12 min. read

36,480

people reacted

Slicing and Dicing CVE-2018-5002 Payloads: New CHAINSHOT Malware

By Dominik Reichel and Esmid Idrizovic
September 6, 2018 at 1:00 PM

11 min. read

37,297

people reacted

Abusing the Service Control Manager to Establish Persistence for Non-Service Applications

By Dominik Reichel
December 18, 2017 at 1:00 PM

3 min. read

53,002

people reacted

Everybody Gets One: QtBot Used to Distribute Trickbot and Locky

By Brandon Levene, Brandon Young and Dominik Reichel
November 1, 2017 at 1:00 PM

8 min. read

33,545

people reacted

Analysing a 10-Year-Old SNOWBALL

By Dominik Reichel
September 6, 2017 at 5:00 AM

10 min. read

72,208

people reacted

Dimnie: Hiding in Plain Sight

By Brandon Levene, Dominik Reichel and Esmid Idrizovic
March 28, 2017 at 5:00 AM

12 min. read

90,470

people reacted

The Gamaredon Group Toolset Evolution

By Anthony Kasza and Dominik Reichel
February 27, 2017 at 3:00 PM

15 min. read

52,132

people reacted

2016 Updates to Shifu Banking Trojan

By Dominik Reichel
January 6, 2017 at 12:00 PM

21 min. read

Posts created by: Dominik Reichel

Blowing Cobalt Strike Out of the Water With Memory Analysis

IronNetInjector: Turla’s New Malware Loading Tool

AcidBox: Rare Malware Repurposing Turla Group Exploit Targeted Russian Organizations

Slicing and Dicing CVE-2018-5002 Payloads: New CHAINSHOT Malware

Abusing the Service Control Manager to Establish Persistence for Non-Service Applications

Everybody Gets One: QtBot Used to Distribute Trickbot and Locky

Analysing a 10-Year-Old SNOWBALL

Dimnie: Hiding in Plain Sight

The Gamaredon Group Toolset Evolution

2016 Updates to Shifu Banking Trojan

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account