Author Archives: Dancho Danchev

NOTE:The majority of these typosquatted phishing domains which are also known to have been used in targeted phishing campaigns are known to have been part of the Void Balaur hacking for hire vendor of services.I’ve decided to share with everyone a rece… Continue reading Profiling a Typosquatted Google’s Gmail Targeted Phishing Campaign Domain Portfolio – An OSINT Analysis→

Dear blog readers,I’ve decided to touch base with everyone and share with you a screenshot which basically demonstrates a data mined visualization of my old GMail account where I’m currently using a proprietary solution for the purpose of figuring out … Continue reading Data Mining and Visualizing My Old GMail Account – An Analysis→

Dear blog readers,I’ve decided to share some personal photos from my Cyber Security Talks Bulgaria presentation which is quite an outstanding event with quite some interesting and good audience where I had the privilege and meet and socialize with fell… Continue reading Sample Photos from My Cyber Security Talks Bulgaria Presentation – An Analysis→

 Dear blog readers,I’ve decided to share with everyone some technical details behind a currently circulating malicious software serving campaign that’s dropping a SmokeLoader variant on the targeted host and is using a variety of C&C serv… Continue reading SmokeLoader Themed Malware Serving Campaign Spotted in the Wild – An Analysis→

Dear blog readers,In this post I’ve decided to further profile a currently circulating malicious software and njRAT malware dropping campaign that’s using a popular port forwarding solution as a C&C server with the idea to provide everyone wit… Continue reading Massive Malware Serving Campaign Abuses Portmap A Web Based Port Forwarding Solution – An Analysis→

NOTE:These screenshots were obtained in 2009 courtesy of me while doing research.An image is worth a thousand words.Sample screenshots include:Stay tuned! Continue reading Profiling the Limbo Crimeware Malicious Software Release – An Analysis→

Dear blog readers,Back in 2009 I came across to a pretty interesting and easy to use sophisticated ZeuS crimeware managed hosting service which was basically enticing users into becoming customers of a managed ZeuS crimeware service which was basically… Continue reading Profiling the ZeusEsta Managed ZeuS Crimeware Hosting Service – An Analysis→

Dear blog readers,I’ve decided to share with everyone sample screenshots which I took back in 2010 while doing research in specific the malicious release’s capability to eavesdrop on email communications initiated from the hosts of the affected victims… Continue reading Profiling a Email Password Harvesting Enabled Malicious Software Release – An Analysis→

Dear blog readers,I’ve decided to share with everyone some screenshots which I took from the infamous back in 2010 stolen and compromised credit cards checking service hxxp://ccchkr.com which uses a variety of methods and techniques to check the validi… Continue reading Exposing a Russia-Based Stolen and Compromised Credit Cards Checking Web Site – An Analysis→

Did you know that a huge percentage of Rock Phish related campaigns are known to have been hosted on a fast-fluxed botnet infrastructure where the ultimate goal is to make them impossible to take offline or basically increase the average time it takes … Continue reading Exposing a Sample Rock Phish Phishing Campaign’s Botnet Hosted Infrastructure – An Analysis→