Blog.

20-02-2025

Triage Thursday

Ep. 166: Triage Thursday

Read

13-02-2025

Triage Thursday

Ep. 165: Triage Thursday

Read

06-02-2025

Triage Thursday

Ep. 164: Triage Thursday

Read

30-01-2025

Triage Thursday

Ep. 164: Triage Thursday

Read

23-01-2025

Triage Thursday

Ep. 163: Triage Thursday

Read

16-01-2025

Triage Thursday

Ep. 162: Triage Thursday

Read

09-01-2025

Triage Thursday

Ep. 161: Triage Thursday

Read

05-12-2024

Triage Thursday

Ep. 160: Triage Thursday

Read

28-11-2024

Triage Thursday

Ep. 159: Triage Thursday

Read

21-11-2024

Triage Thursday

Ep. 158: Triage Thursday

Read

14-11-2024

Triage Thursday

Ep. 157: Triage Thursday

Read

07-11-2024

Triage Thursday

Ep. 156: Triage Thursday

Read

01-11-2024

Triage Insights

Triage Insights: TgToxic is back

Read

31-10-2024

Triage Thursday

Ep. 155: Triage Thursday

Read

24-10-2024

Triage Thursday

Ep. 154: Triage Thursday

Read

17-10-2024

Triage Thursday

Ep. 153: Triage Thursday

Read

10-10-2024

Triage Thursday

Ep. 152: Triage Thursday

Read

03-10-2024

Triage Thursday

Ep. 151: Triage Thursday

Read

26-09-2024

Triage Thursday

Ep. 150: Triage Thursday

Read

19-09-2024

Triage Thursday

Ep. 149: Triage Thursday

Read

12-09-2024

Triage Thursday

Ep. 148: Triage Thursday

Read

05-09-2024

Triage Thursday

Ep. 147: Triage Thursday

Read

29-08-2024

Triage Thursday

Ep. 146: Triage Thursday

Read

22-08-2024

Triage Thursday

Ep. 145: Triage Thursday

Read

15-08-2024

Triage Thursday

Ep. 144: Triage Thursday

Read

08-08-2024

Triage Thursday

Ep. 143: Triage Thursday

Read

07-08-2024

Triage Insights

Triage Insights: Detection Evasion In Android APK Headers

Read

01-08-2024

Triage Thursday

Ep. 142: Triage Thursday

Read

25-07-2024

Triage Thursday

Ep. 141: Triage Thursday

Read

18-07-2024

Triage Thursday

Ep. 140: Triage Thursday

Read

11-07-2024

Triage Thursday

Ep. 139: Triage Thursday

Read

04-07-2024

Triage Thursday

Ep. 138: Triage Thursday

Read

27-06-2024

Triage Thursday

Ep. 137: Triage Thursday

Read

20-06-2024

Triage Thursday

Ep. 136: Triage Thursday

Read

13-06-2024

Triage Thursday

Ep. 135: Triage Thursday

Read

06-06-2024

Triage Thursday

Ep. 134: Ubuntu 22.04, RedHat Linux, and French Language Support

Read

23-05-2024

Triage Thursday

Ep. 133: Triage Thursday

Read

16-05-2024

Triage Thursday

Ep. 132: Triage Thursday

Read

09-05-2024

Triage Thursday

Ep. 131: Triage Thursday

Read

02-05-2024

Triage Thursday

Ep. 130: Triage Thursday

Read

25-04-2024

Triage Thursday

Ep. 129: Triage Thursday

Read

18-04-2024

Triage Thursday

Ep. 128: Triage Thursday

Read

11-04-2024

Triage Thursday

Ep. 127: Triage Thursday

Read

04-04-2024

Triage Thursday

Ep. 126: Triage Thursday

Read

28-03-2024

Triage Thursday

Ep. 125: Easier Upload via Drag & Drop or Copy/Paste

Read

21-03-2024

Triage Thursday

Ep. 124: Triage Thursday

Read

14-03-2024

Triage Thursday

Ep. 123: Triage Thursday

Read

07-03-2024

Triage Thursday

Ep. 122: Triage Thursday

Read

29-02-2024

Triage Thursday

Ep. 121: Triage Thursday

Read

22-02-2024

Triage Thursday

Ep. 120: Triage Thursday

Read

15-02-2024

Triage Thursday

Ep. 119: Triage Thursday

Read

08-02-2024

Triage Thursday

Ep. 118: Triage Thursday

Read

01-02-2024

Triage Thursday

Ep. 117: Triage Thursday

Read

25-01-2024

Triage Thursday

Ep. 116: Triage Thursday

Read

18-01-2024

Triage Thursday

Ep. 115: Triage Thursday

Read

11-01-2024

Triage Thursday

Ep. 114: Triage Thursday

Read

04-01-2024

Triage Thursday

Ep. 113: Triage Thursday

Read

14-12-2023

Triage Insights

Triage Insights: Octo Android Banker

Read

07-12-2023

Triage Thursday

Ep. 112: Triage Thursday

Read

30-11-2023

Triage Thursday

Ep. 111: Support for Windows 11 & Android 13

Read

23-11-2023

Triage Thursday

Ep. 110: Triage Thursday

Read

16-11-2023

Triage Thursday

Ep. 109: Triage Thursday

Read

09-11-2023

Triage Thursday

Ep. 108: Triage Thursday

Read

08-11-2023

Short Guides

Submitting URLs as QR Codes

Read

02-11-2023

Triage Thursday

Ep. 107: Triage Thursday

Read

26-10-2023

Triage Thursday

Ep. 106: Triage Thursday

Read

19-10-2023

Triage Thursday

Ep. 105: Triage Thursday

Read

12-10-2023

Triage Thursday

Ep. 104: Triage Thursday

Read

05-10-2023

Triage Thursday

Ep. 103: Triage Thursday

Read

28-09-2023

Triage Thursday

Ep. 102: Submission UI Updates

Read

21-09-2023

Triage Thursday

Ep. 101: New Analysis Log View

Read

14-09-2023

Triage Thursday

Triage Thursday Ep. 100

Read

07-09-2023

Triage Thursday

Triage Thursday Ep. 99

Read

31-08-2023

Triage Thursday

Triage Thursday Ep. 98

Read

24-08-2023

Triage Thursday

Triage Thursday Ep. 97

Read

17-08-2023

Triage Thursday

Triage Thursday Ep. 96

Read

10-08-2023

Triage Thursday

Triage Thursday Ep. 95

Read

03-08-2023

Triage Thursday

Triage Thursday Ep. 94

Read

28-07-2023

Triage Thursday

Triage Thursday Ep. 93

Read

12-01-2023

Triage Thursday

Triage Thursday Ep. 92

Read

01-12-2022

Triage Thursday

Triage Thursday Ep. 91

Read

24-11-2022

Triage Thursday

Triage Thursday Ep. 90

Read

10-11-2022

Triage Thursday

Triage Thursday Ep. 89

Read

27-10-2022

Triage Thursday

Triage Thursday Ep. 88

Read

29-09-2022

Triage Thursday

Triage Thursday Ep. 87

Read

22-09-2022

Triage Thursday

Triage Thursday Ep. 86

Read

15-09-2022

Triage Thursday

Triage Thursday Ep. 85

Read

18-08-2022

Triage Thursday

Triage Thursday Ep. 84

Read

11-08-2022

Triage Thursday

Triage Thursday Ep. 83

Read

28-07-2022

Triage Thursday

Triage Thursday Ep. 82

Read

21-07-2022

Triage Thursday

Triage Thursday Ep. 81

Read

14-07-2022

Triage Thursday

Triage Thursday Ep. 80

Read

08-07-2022

Triage Thursday

Acquisition News and Detection Updates

Read

30-06-2022

Triage Thursday

Raccoon v2 and Other Detection Updates

Read

23-06-2022

Triage Thursday

BumbleBee Fix and New Extractors

Read

16-06-2022

Triage Thursday

New Family Additions

Read

09-06-2022

Triage Thursday

Support for Eternity Project and EnemyBot, Plus Family Updates

Read

02-06-2022

Triage Thursday

A Few Weeks of Configuration Extractor and Detection Updates

Read

12-05-2022

Triage Thursday

Qakbot, BumbleBee, Gh0stRAT and Redline Improvements

Read

05-05-2022

Triage Thursday

SAML Release and Family Updates

Read

28-04-2022

Triage Thursday

Emotet x64 and Other Updates

Read

14-04-2022

Triage Thursday

UPX Unpacking and Family Updates

Read

07-04-2022

Triage Thursday

Configuration Extractor Updates

Read

31-03-2022

Triage Thursday

ssdeep Support, General Improvements & Family Updates

Read

17-03-2022

Triage Thursday

Maldoc Handling Updates and Family Detections

Read

10-03-2022

Triage Thursday

Greater Filetype Support, Family Updates, and New Coniguration Extractors

Read

03-03-2022

Triage Thursday

New Family Detections and MHT File Support

Read

17-02-2022

Triage Thursday

Updates for IcedID, Mercurial, Allcome and Qakbot

Read

10-02-2022

Triage Thursday

New Versions and New Families

Read

27-01-2022

Triage Thursday

Updates for AgentTesla, GoldDragon, BlackCat and Trickbot NWorm

Read

20-01-2022

Triage Thursday

Emotet Epoch 5 and other version updates

Read

13-01-2022

Triage Thursday

New Year, New Family Updates

Read

23-12-2021

Triage Thursday

A Year in Review, Plus Detection Updates

Read

09-12-2021

Triage Thursday

Backend Updates and Family Detection Improvements

Read

02-12-2021

Triage Thursday

Advanced Submit Screen and Emotet Powershell Parsing

Read

18-11-2021

Triage Thursday

Emotet Updates, and BazarLoader Emulation

Read

11-11-2021

Triage Thursday

SSO Support and Family Signatures

Read

04-11-2021

Triage Thursday

MacOS, TA505 and Other Family Detections

Read

21-10-2021

Triage Thursday

Onemon Tweak Plus AtomSilo And STRRAT Detections

Read

14-10-2021

Triage Thursday

Configuration Extractors and Family Updates

Read

30-09-2021

Triage Thursday

Detection Updates for BazarLoader, ERMAC, Jupyter and Vidar

Read

23-09-2021

Triage Thursday

SquirrelWaffle and Other Detection Updates

Read

16-09-2021

Triage Thursday

New and Improved Family Detections

Read

02-09-2021

Triage Thursday

GeoIP Mapping, Non-English VMs and Modify Analysis Duration

Read

26-08-2021

Triage Thursday

Configuration Extractors and Family Updates

Read

19-08-2021

Triage Thursday

Network Simulation and Family Updates

Read

12-08-2021

Triage Thursday

Windows 11, TheHive Integration, and Family Updates

Read

05-08-2021

Triage Thursday

Updates for Configuration Extractors and Family Detections

Read

29-07-2021

Triage Thursday

General Family Updates

Read

21-07-2021

Triage Thursday

Suricata Integration, New Extractors, and Family Detections

Read

08-07-2021

Triage Thursday

Extractor Updates, New Families, and LZMA Support

Read

01-07-2021

Triage Thursday

LimeRAT Extractor and Family Signature Additions

Read

24-06-2021

Triage Thursday

Detection updates for macOS and Windows

Read

17-06-2021

Triage Thursday

Onion Support and Signature Updates

Read

10-06-2021

Triage Thursday

New UI, TOR support, and detection updates

Read

03-06-2021

Triage for macOS

Read

27-05-2021

Triage Thursday

Android Support Updates and Family Tweaks

Read

20-05-2021

Triage Thursday

More Family Updates and Additions

Read

13-05-2021

Triage Thursday

Updates for Flubot, Redline, Bazar, DoubleBack and more

Read

06-05-2021

Triage Thursday

Signature Updates

Read

29-04-2021

Triage Thursday

General Detection Updates

Read

22-04-2021

Triage Thursday

macOS Announcement and Family Updates

Read

19-04-2021

Short Guides

Using Magic Links

Read

08-04-2021

Triage Thursday

Phishing Analysis and Family Updates

Read

25-03-2021

Triage Thursday

Preview of Phishing Analysis

Read

18-03-2021

Triage Thursday

Triage Knowledge Base

Read

11-03-2021

Triage Thursday

Family Detection Updates

Read

04-03-2021

Triage Thursday

Custom Yara Support

Read

25-02-2021

Triage Thursday

Extractor Updates and ZLoader Anti-VM

Read

18-02-2021

Triage Thursday

New Warzone Extractor and Family Updates

Read

11-02-2021

Triage Thursday

New Families and Detection Updates

Read

04-02-2021

Triage Thursday

Updated Gozi Detection and Gootkit Extractor

Read

28-01-2021

Triage Thursday

Danabot Update, Android Families, and QoL Updates

Read

21-01-2021

Triage Thursday

New UI Features and Additions to Family Detections

Read

14-01-2021

Triage Thursday

Dashboard Update and Family Detections

Read

17-12-2020

Triage Thursday

A Year of Excel 4.0 Macros

Read

10-12-2020

Triage Thursday

Search by Platform and Family Updates

Read

03-12-2020

Triage Thursday

New and Updated Families

Read

02-12-2020

Triage Integration with Splunk and Cortex XSOAR

Read

26-11-2020

Triage Thursday

Family Updates

Read

24-11-2020

Triage for Linux

Read

12-11-2020

Triage Thursday

Configuration Extractor Improvements

Read

05-11-2020

Triage Thursday

New Mitre ATT&CK Matrix UI

Read

29-10-2020

Triage Thursday

New Integrations, Updated DLL Handling and New Family Classifications

Read

23-10-2020

Triage Thursday

Search, Powershell Deobfuscation, and File Hash Display

Read

15-10-2020

Triage Thursday

Updates for ZLoader, Netwalker, QNodeService and WSHRAT

Read

08-10-2020

Triage Thursday

General Family Updates

Read

01-10-2020

Triage Thursday

API Client and Family Updates

Read

24-09-2020

Triage Thursday

Custom Archive Passwords, Dridex Config Extractor and Family Updates

Read

17-09-2020

Triage Thursday

New Overview Section and Family Updates

Read

10-09-2020

Triage Thursday

URLScan Integration and Updates for Emotet and Zloader

Read

03-09-2020

Triage Thursday

CobaltStrike, Trickbot and Other Family Detections

Read

27-08-2020

Triage Thursday

Smokeloader Analysis and More Family Detections

Read

24-08-2020

Short Guides

Analysis Profiles

Read

20-08-2020

Triage Thursday

Updated family classifications

Read

13-08-2020

Triage Thursday

New extractors, expanded family support and Android analysis

Read

11-08-2020

Android

Triage for Android

Read

06-08-2020

Triage Updates

Triage Thursday Episode 1: Open registration and a busy week of updates

Read

28-07-2020

Triage Updates

File Submission from URL

Read

17-06-2020

Triage Updates

Dropped files and more goodies

Read

06-05-2020

Triage Updates

SMTP/FTP Extraction

Read

15-04-2020

Office

More Excel 4.0 XLM Extraction

Read

09-04-2020

Office

Excel 4.0 XLM Extraction

Read

20-03-2020

Short Guides

Accessing Dropped Files on Triage

Read

09-03-2020

Triage Updates

Analysis Log View

Read

05-03-2020

In-Depth Metasploit Payloads Analysis

Read

03-02-2020

Analyzing Metasploit Payloads

Read

24-01-2020

Short Guides

Submitting Zip Files to Triage

Read

07-01-2020

Powershell Static Analysis & Emotet results

Read

18-12-2019

Understanding Ransomware

Detecting Sodin

Read

12-11-2019

Reversing Qakbot

Read

30-10-2019

Understanding Ransomware

General Techniques

Read

03-07-2019

Cuckoo Sandbox Setup for People in a Hurry

Read

07-05-2019

Making the Call

Why We Want More Arbiters

Read

13-03-2019

Cuckoo Sandbox Architecture

Read

20-02-2019

Release of Cuckoo-compatible onemon Windows kernel driver

Read

17-12-2018

Making the Call

The Tech Behind Our PolySwarm Arbiter

Read

27-11-2018

Making the Call

The First PolySwarm Arbiter

Read

12-11-2018

LNK HTA Polyglot

Read

29-10-2018

Analysis on Locky dropper mechanisms

Read

15-10-2018

IQY malspam campaign

Read

03-10-2018

Hooking VBScript execution in Cuckoo

Read

18-09-2018

Cuckoo Sandbox 2.0.6 pentest

Read