Hatching logo

Making the Call: The First PolySwarm Arbiter

  • 2018-11-27
  • Ben de Graaff & Jurriaan Bremer
Hatching has integrated Cuckoo Sandbox as the first Arbiter of PolySwarms threat intelligence marketplace. This is the first in a series of three blog posts on our PolySwarm Arbitership.

Hatching Blog

LNK HTA Polyglot

  • 2018-11-12
  • Alwin Peppels
A little while ago, we came across an interesting attack vector using a polyglot LNK/HTA delivery mechanism We were interested to see how it would fare under Cuckoo, so we built one and ran it through the analysis.

Hatching Blog

Analysis on Locky dropper mechanisms

  • 2018-10-29
  • Jordan Zwan
This analysis aims to identify common code structures and methods typically used in various droppers associated with Locky ransomware. It is based on a sample set of 2631 JavaScript samples identified as dropper scrips delivering Locky. The results are illustrated through the analysis of three samples.

Hatching Blog

  • IQY malspam campaign

    Internal English

  • Hooking VBScript execution in Cuckoo

    Internal English

  • Cuckoo Sandbox 2.0.6 pentest

    Internal English

  • PolySwarm Kickstarts Platform with First Arbiter Based on Cuckoo Sandbox

    External English

  • Aanpak toenemende dreiging ‘Internet of Things’

    External Dutch

  • Provincie Zuid-Holland steunt innovatief malware onderzoek

    External Dutch

  • Using a Free Online Malware Analysis Sandbox to Dig Into Malicious Code

    External English

  • Cuckoo Sandbox vs. Reality

    External English

  • Automating Malware Analysis with Cuckoo Sandbox

    External English