Vitali Kremez, Author at SentinelOne

Copy Of Pro Russian CyberSpy APT Gamaredon Wages Silent War With Ukranian Military Law Enforcement 2

Pro-Russian CyberSpy Gamaredon Intensifies Ukrainian Security Targeting

Vitali Kremez / February 5, 2020

Read how the Gamaredon group wages a silent cyber war against the Ukraine even when all other domains are denied by the strategic or political framework.

PDF

Crimeware

Top-Tier Russian Organized Cybercrime Group Unveils Fileless Stealthy “PowerTrick” Backdoor for High-Value Targets

Vitali Kremez / January 9, 2020

SentinelLabs developed mock command-and-control panels to allow the institutions to utilize them for testing detections related to “PowerTrick”

PDF

Adversary

Anchor Project | The Deadly Planeswalker: How The TrickBot Group United High-Tech Crimeware & APT

Vitali Kremez / December 10, 2019

The Wind of Time Shakes the Underground | High-Tech Cybercrime & APT | Most Sophisticated & Resourceful Crimeware Group

PDF

YARA Hunting for Code Reuse: DoppelPaymer Ransomware & Dridex Families

From the Front Lines | 8 minute read

From “RobbinHood” to APT28: Crimeware Virus & APT Journey

From the Front Lines | 7 minute read

How TrickBot Malware Hooking Engine Targets Windows 10 Browsers

Vitali Kremez / October 24, 2019

Vitali Kremez revealing how TrickBot’s hooking engine targets Chrome, Firefox, Explorer and Edge in Windows 10

PDF

From Office Macro Malware To Lightweight JS Loader 10 1

Advanced Persistent Threat

Deep Insight into “FIN7” Malware Chain: From Office Macro Malware to Lightweight JS Loader

Vitali Kremez / October 3, 2019

Vitali Kremez dissecting the ‘Fin7’ malware chain that leverages malicious MS Office Macros and a JS loader.

PDF

Advanced Persistent Threat

FIN6 “FrameworkPOS”: Point-of-Sale Malware Analysis & Internals

Vitali Kremez / September 19, 2019

Vitali Kremez diving into the FIN6 “FrameworkPOS”, targeting payment card data from Point-of-Sale (POS) or eCommerce systems.

PDF

Cybercrime Banload Banking Malware Implements New Techniques For Fraud 1

Crimeware

RIG Exploit Kit Chain Internals

Vitali Kremez / September 12, 2019

Vitali Kremez explaining the RIG Exploit Kit and the infection chain internals that led to the Amadey Stealer and Clipboard Hijacker.

PDF

Security Research

Cybercrime: Groups Behind “Banload” Banking Malware Implement New Techniques

Vitali Kremez / May 13, 2019

Cybercriminals aren’t deterred by legacy AV. Learn how the gang behind “Banload” malware used a new kernel driver to remove popular anti-malware solutions.

PDF