Felipe Duarte (@dark0pcodes) 's Twitter Profile
Felipe Duarte

@dark0pcodes

Malware researcher, CEH, GREM, electronics geek, IoT enthusiast, programmer, drone lover and machine learning fan.Β Just hunting malware for fun... and profit!

ID: 903222978212659200

linkhttps://darkopcodes.wordpress.com/ calendar_today31-08-2017 11:48:33

1,1K Tweet

2,2K Followers

748 Following

Felipe Duarte (@dark0pcodes) 's Twitter Profile Photo
Felipe Duarte
@dark0pcodes

a year ago

Come and visit us at the blackhat Arsenal to learn more about our open source DFIR tool "MasterParser"

Come and visit us at the blackhat Arsenal to learn more about our open source DFIR tool "MasterParser"
BlueSpace (@bluespacesec) 's Twitter Profile Photo
BlueSpace
@bluespacesec

a year ago

πŸ“’Β‘Β‘El CFP del BlueSpace explota!!πŸ“’ Gracias a todos por mandar sus propuestas. Este aΓ±o recibimos tantas charlas que decidimos 𝐚𝐝𝐞π₯𝐚𝐧𝐭𝐚𝐫 π₯𝐚 𝐟𝐞𝐜𝐑𝐚 𝐝𝐞 𝐜𝐒𝐞𝐫𝐫𝐞 𝐝𝐞π₯ 𝐜𝐟𝐩 𝐚 𝐞𝐬𝐭𝐞 𝐯𝐒𝐞𝐫𝐧𝐞𝐬 πŸ’/𝟏𝟎 ‼️ Β‘Vamos! Β‘Vamos! πŸ‘‰ forms.gle/pnNJcBDkHBh16m…

RussianPanda 🐼 πŸ‡ΊπŸ‡¦ (@russianpanda9xx) 's Twitter Profile Photo
RussianPanda 🐼 πŸ‡ΊπŸ‡¦
@russianpanda9xx

a year ago

MSIX is still so hot right now, here is the basic query to get started with some juicy malware hunting, thanks urlscan.io πŸ•΅οΈ query: page.url:".msix" NOT page.url:*statics.teams* NOT page.url:*teams.static*

MSIX is still so hot right now, here is the basic query to get started with some juicy malware hunting, thanks <a href="/urlscanio/">urlscan.io</a> πŸ•΅οΈ query: page.url:".msix" NOT page.url:*statics.teams* NOT page.url:*teams.static*
WatchingRac (@racwatchin8872) 's Twitter Profile Photo
WatchingRac
@racwatchin8872

a year ago

#Lummac2 With this simple query is possible to find more Lumma C2: urlscan.io/search/#hash%3… CC: Fox_threatintel NDA0E blinkz kddx00 Raghav Rastogi DaveTheResearcher Who said what? Dee Mikhail Kasimov ge0lev

#Lummac2 With this simple query is possible to find more Lumma C2: urlscan.io/search/#hash%3… CC: <a href="/banthisguy9349/">Fox_threatintel</a> <a href="/NDA0E/">NDA0E</a> <a href="/BlinkzSec/">blinkz</a> <a href="/kddx0178318/">kddx00</a> <a href="/raghav127001/">Raghav Rastogi</a> <a href="/DaveLikesMalwre/">DaveTheResearcher</a> <a href="/g0njxa/">Who said what?</a> <a href="/ViriBack/">Dee</a> <a href="/500mk500/">Mikhail Kasimov</a> <a href="/ge0lev/">ge0lev</a>
Who said what? (@g0njxa) 's Twitter Profile Photo
Who said what?
@g0njxa

a year ago

Quick changes on this reCAPTCHA malware campaign now abusing DigitalOcean S3 buckets and CDN to still deliver #Lumma Stealer. Similar behavior, Detonation: app.any.run/tasks/02afc68d…

Quick changes on this reCAPTCHA malware campaign now abusing <a href="/digitalocean/">DigitalOcean</a> S3 buckets and CDN to still deliver #Lumma Stealer. Similar behavior, Detonation: app.any.run/tasks/02afc68d…
RussianPanda 🐼 πŸ‡ΊπŸ‡¦ (@russianpanda9xx) 's Twitter Profile Photo
RussianPanda 🐼 πŸ‡ΊπŸ‡¦
@russianpanda9xx

a year ago

You can also leverage VirusTotal Enterprise to search for potential C2s related to #LummaC2 based on the redirect page.

You can also leverage <a href="/virustotal/">VirusTotal</a> Enterprise to search for potential C2s related to #LummaC2 based on the redirect page.
Merl (@merlax_) 's Twitter Profile Photo
Merl
@merlax_

a year ago

#Malware RAT Operador πŸ‡§πŸ‡· posible OusabanπŸ€” - Objetivos πŸ‡§πŸ‡· y posible πŸ‡¦πŸ‡· - El panel web parece loguear la actividad al congelar el equipo de la vΓ­ctima πŸ€¦β€β™‚οΈ

#Malware RAT Operador πŸ‡§πŸ‡· posible OusabanπŸ€” - Objetivos πŸ‡§πŸ‡· y posible πŸ‡¦πŸ‡· - El panel web parece loguear la actividad al congelar el equipo de la vΓ­ctima πŸ€¦β€β™‚οΈ
Felipe Duarte (@dark0pcodes) 's Twitter Profile Photo
Felipe Duarte
@dark0pcodes

a year ago

Check out! Our latest research were we exposed several tools found during an incident response involving APT41. securityjoes.com/post/the-silen…