Evasion Archives - Unit42

Protect Against Russia-Ukraine Cyber Activity

A conceptual image that represents malware, including the malicious uses of Cobalt Strike and its metadata encoding algorithm covered here.

12,887

people reacted

Cobalt Strike Analysis and Tutorial: CS Metadata Encoding and Decoding

By Chris Navarrete, Durgesh Sangvikar, Yu Fu, Yanhui Jia and Siddhart Shibiraj
May 6, 2022 at 12:00 PM

3

9 min. read

A conceptual image representing DNS security, such as the strategically aged domain detection system discussed here.

39,819

people reacted

Strategically Aged Domain Detection: Capture APT Attacks With DNS Traffic Trends

By Zhanhao Chen, Daiping Liu, Wanjin Li and Jielong Xu
December 29, 2021 at 6:00 AM

16

9 min. read

A conceptual image representing malware, such as Emotet, discussed in this blog.

19,936

people reacted

Attack Chain Overview: Emotet in December 2020 and January 2021

By Chris Navarrete, Yanhui Jia, Matthew Tennis, Durgesh Sangvikar and Rongbo Shao
March 8, 2021 at 6:00 AM

11

11 min. read

This conceptual image illustrates the idea of malware, such as the njRAT spreading through active Pastebin command and control tunnel that is discussed in this blog.

29,306

people reacted

njRAT Spreading Through Active Pastebin Command and Control Tunnel

By Yanhui Jia, Chris Navarrete and Haozhe Zhang
December 9, 2020 at 6:00 AM

8

6 min. read

Malware Used by Rocke Group Evolves to Evade Detection by Cloud Security Products

By Xingyu Jin and Claud Xiao
January 17, 2019 at 6:00 AM

2

5 min. read

37,379

people reacted

OilRig targets a Middle Eastern Government and Adds Evasion Techniques to OopsIE

By Robert Falcone, Bryan Lee and Riley Porter
September 4, 2018 at 1:00 PM

3

9 min. read