Jeff White, Author at Unit42

16,310

people reacted

Practical Behavioral Profiling of PowerShell Scripts through Static Analysis (Part 3)

By Jeff White
October 25, 2019 at 6:00 AM

9 min. read

14,434

people reacted

Practical Behavioral Profiling of PowerShell Scripts through Static Analysis (Part 2)

By Jeff White
October 24, 2019 at 6:00 AM

14 min. read

17,289

people reacted

Practical Behavioral Profiling of PowerShell Scripts through Static Analysis (Part 1)

By Jeff White
October 23, 2019 at 6:00 AM

10 min. read

36,456

people reacted

Takedowns and Adventures in Deceptive Affiliate Marketing

By Jeff White
April 25, 2019 at 6:00 AM

22 min. read

18,158

people reacted

Dissecting Hancitor’s Latest 2018 Packer

By Jeff White
February 27, 2018 at 5:00 AM

16 min. read

21,947

people reacted

PowerStager Analysis

By Jeff White
January 12, 2018 at 5:00 AM

8 min. read

16,053

people reacted

Analyzing the Various Layers of AgentTesla’s Packing

By Jeff White
September 25, 2017 at 10:00 AM

10 min. read

21,090

people reacted

The Curious Case of Notepad and Chthonic: Exposing a Malicious Infrastructure

By Jeff White
August 15, 2017 at 5:00 AM

10 min. read

14,380

people reacted

VIDEO: Tips, Tricks, and Clues to Escape the LabyREnth CTF

By Samantha Pierre, Richard Wartell, Tyler Halfpop and Jeff White
June 28, 2017 at 4:00 PM

8 min. read

13,760

people reacted

Pulling the Brake on the Magnitude EK Train

By Jeff White
April 13, 2017 at 1:00 PM

5 min. read

123,454

people reacted

Pulling Back the Curtains on EncodedCommand PowerShell Attacks

By Jeff White
March 10, 2017 at 5:00 AM

29 min. read

21,511

people reacted

Farming Malicious Documents to Unravel Ransomware

By Jeff White
January 27, 2017 at 1:00 PM

6 min. read

13,790

people reacted

Pythons and Unicorns and Hancitor…Oh My! Decoding Binaries Through Emulation

By Jeff White
August 30, 2016 at 1:20 PM

11 min. read

VB Dropper and Shellcode for Hancitor Reveal New Techniques Behind Uptick

By Jeff White
August 21, 2016 at 5:00 PM

7 min. read

How to Track Actors Behind Keyloggers Using Embedded Credentials

By Jeff White
July 12, 2016 at 3:00 PM

8 min. read

Posts created by: Jeff White

Practical Behavioral Profiling of PowerShell Scripts through Static Analysis (Part 3)

Practical Behavioral Profiling of PowerShell Scripts through Static Analysis (Part 2)

Practical Behavioral Profiling of PowerShell Scripts through Static Analysis (Part 1)

Takedowns and Adventures in Deceptive Affiliate Marketing

Dissecting Hancitor’s Latest 2018 Packer

PowerStager Analysis

Analyzing the Various Layers of AgentTesla’s Packing

The Curious Case of Notepad and Chthonic: Exposing a Malicious Infrastructure

VIDEO: Tips, Tricks, and Clues to Escape the LabyREnth CTF

Pulling the Brake on the Magnitude EK Train

Pulling Back the Curtains on EncodedCommand PowerShell Attacks

Farming Malicious Documents to Unravel Ransomware

Pythons and Unicorns and Hancitor…Oh My! Decoding Binaries Through Emulation

VB Dropper and Shellcode for Hancitor Reveal New Techniques Behind Uptick

How to Track Actors Behind Keyloggers Using Embedded Credentials

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account