🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Posted a small write up on extracting the LNK payload from this one. "Evasion by Annoyance: When LNK Payloads Are Too Long" montysecurity.medium.com/evasion-by-ann…

Added #Meduza Stealer to C2 Tracker 🎯 Shodan Search http.html_hash:1368396833 IOCs: github.com/montysecurity/…

Big update to C2 Tracker 📢 added 17 new tools/malware and retired some lower fidelity ones github.com/montysecurity/… #CTI #ThreatIntel

Posted a write-up on this and, with some luck, we got the source code of the infostealer that it drops montysecurity.medium.com/from-lnk-paylo… #CTI #ThreatIntel #Malware

Hunting Sandworm Team's TTPs - montysecurity.medium.com/hunting-sandwo… Happy Hunting 🎯

Looks like Shodan added "product:Havoc" as a search - CC 5pider shodan.io/search?query=p…

Good find! Added this to C2 Tracker 🎯 github.com/montysecurity/…

Put out a post dissecting this file. Used it as an example to learn the very basics of analyzing APK files and share my process along the way. montysecurity.medium.com/stumbling-thro…

Hunting Volt Typhoon TTPs montysecurity.medium.com/hunting-volt-t…

Analyzing a Suspected #AgentTesla Sample with #ChatGPT montysecurity.medium.com/analyzing-a-su…

Just released a #Python script for interacting with the abuse.ch Malware Bazaar collection and finding samples that meet multiple criteria github.com/montysecurity/… I showcase it here hunting #CobaltStrike samples montysecurity.medium.com/hunting-cobalt…

Thank you for the support!! 🤘

From #OSINT to Disk: Wave Stealer Analysis montysecurity.medium.com/from-osint-to-… #WaveStealer #MalwareAnalysis #CTI #ThreatIntel

Dropped a new blog on hunting APT41 🐼 one of my favorite ones to put together, full of hunts for common TTPs and just things you should probably be hunting for anyway 🎯 montysecurity.medium.com/hunting-apt41-…

Big changes to C2 Tracker ‼️ - Added support for Censys searches 🎉 - Updates weekly on Mondays (modeled after Censys/Shodan scanning frequency) - Added multiple new C2s/malware/botnets github.com/montysecurity/…

Happy to have contributed to the great C2 tracker by monty github.com/montysecurity/… with a query to hunt Atlandida Stealer on Shodan and Census :)

Dropped a new tool for malware researchers. It is used to continuously ingest, analyze, and alert on samples given a set of yara rules. Out of the box it works with abuse.ch MalwareBazaar recent uploads but it's modular so you can add more sources github.com/montysecurity/…