Apr 13
Apr 13
Genians Security Center uncovers an APT37 campaign that used social networking as an initial access vector. Two Facebook accounts set to North Korea-linked locations were used to screen targets, build trust, and move conversations to Messenger. genians.co.kr/en/blog/threat…
1
93
18 Mar 2025
Attackers are ditching disk-based payloads. Portable Executable (PE) Injection lets them execute malware entirely in memory, evading EDR & leaving no trace.
🔴 Used in SystemBC attacks
🔴 Hijacks trusted processes
🔴 Bypasses ASLR & security controls
Read more: hubs.li/Q03b1cNX0
#CyberSecurity #PEInjection #MemoryAttacks
1
2
110
7 Feb 2024
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @tryhackme
5
116
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @tryhackme
12
895
8 Jul 2023
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @tryhackme
2
78
7 Jul 2023
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals from @tryhackme
2
54
18 May 2023
2
25
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @tryhackme
3
67
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @tryhackme
2
43
3 Sep 2022
Abusing Windows Internals - I have just completed this room! Check it out: lnkd.in/gk3KhwS5 #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #PortableExecutable #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals via @tryhackme
3
Federal authorities warn #MedusaLocker is targeting #RDP vulnerabilities. The #ransomware uses a batch file to execute a PowerShell script, called invoke-Reflective PEInjection.
#CyberSecurity #InfoSec #malware #RaaS CVSoci.al/unkcnUUy
4
3
16 May 2022
Abusing Windows Internals - I have just completed this room! Check it out: tryhackme.com/room/abusingwi… #tryhackme #Windows #Evasion #ProcessInjection #RedTeam #DLLInjection #PEInjection #ProcessHollowing #abusingwindowsinternals #abusingwindowsinternals via @tryhackme
6
29 Jul 2019
Dridex’s Bag of Tricks: An Analysis of its Masquerading and Code Injection Techniques ... by Ratnesh Pandey #atombombing #codeinjection #dllorderhijacking #dridex #peinjection securityboulevard.com/2019/0…
2
1