Dominik Reichel, Author at Unit 42

Conceptual image representing evasive malware such as Cobalt Strike

65,436

people reacted

Blowing Cobalt Strike Out of the Water With Memory Analysis

By Dominik Reichel, Esmid Idrizovic and Bob Jung
December 2, 2022 at 6:00 AM

15 min. read

A conceptual image representing malware, such as IronNetInjector, discussed in this blog, Turla's new malware loading tool.

45,462

people reacted

IronNetInjector: Turla’s New Malware Loading Tool

By Dominik Reichel
February 19, 2021 at 6:00 AM

10 min. read

67,293

people reacted

AcidBox: Rare Malware Repurposing Turla Group Exploit Targeted Russian Organizations

By Dominik Reichel and Esmid Idrizovic
June 17, 2020 at 6:00 AM

12 min. read

41,048

people reacted

Slicing and Dicing CVE-2018-5002 Payloads: New CHAINSHOT Malware

By Dominik Reichel and Esmid Idrizovic
September 6, 2018 at 1:00 PM

11 min. read

41,279

people reacted

Abusing the Service Control Manager to Establish Persistence for Non-Service Applications

By Dominik Reichel
December 18, 2017 at 1:00 PM

3 min. read

56,489

people reacted

Everybody Gets One: QtBot Used to Distribute Trickbot and Locky

By Brandon Levene, Brandon Young and Dominik Reichel
November 1, 2017 at 1:00 PM

8 min. read

37,681

people reacted

Analysing a 10-Year-Old SNOWBALL

By Dominik Reichel
September 6, 2017 at 5:00 AM

10 min. read

76,499

people reacted

Dimnie: Hiding in Plain Sight

By Brandon Levene, Dominik Reichel and Esmid Idrizovic
March 28, 2017 at 5:00 AM

12 min. read

98,467

people reacted

The Gamaredon Group Toolset Evolution

By Anthony Kasza and Dominik Reichel
February 27, 2017 at 3:00 PM

15 min. read

56,665

people reacted

2016 Updates to Shifu Banking Trojan

By Dominik Reichel
January 6, 2017 at 12:00 PM

21 min. read

Posts created by: Dominik Reichel

Blowing Cobalt Strike Out of the Water With Memory Analysis

IronNetInjector: Turla’s New Malware Loading Tool

AcidBox: Rare Malware Repurposing Turla Group Exploit Targeted Russian Organizations

Slicing and Dicing CVE-2018-5002 Payloads: New CHAINSHOT Malware

Abusing the Service Control Manager to Establish Persistence for Non-Service Applications

Everybody Gets One: QtBot Used to Distribute Trickbot and Locky

Analysing a 10-Year-Old SNOWBALL

Dimnie: Hiding in Plain Sight

The Gamaredon Group Toolset Evolution

2016 Updates to Shifu Banking Trojan

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account