侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

Stoic. Principal Security Engineer Aquila non captat muscas ⚔️ I break stuff to make the world a safer place 1337 / ex-underground

/𝒅𝒆𝒗/𝒏𝒖𝒍𝒍

about.me/oguzhanakkaya

Joined April 2013

2KPosts 2KFollowers 973Following

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

Jul 17, 2024

Hi my friends in the cyber security ecosystem, my X account, which was suspended for about 4 years without knowing the reason, has been reactivated.Of course, there had to be retaliation by actors against the contributions made to this ecosystem. Here again and stronger than ever

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷 reposted

Will

@BushidoToken

May 11, 2020

Yeah all connected to the Cerberus BitBucket campaign:

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

May 11, 2020

Android Banker Incident From: yuklesm[.]org Name: 20gb_hediye_internet.apk Hash"d0c73e7bb87c22cac394ed5691b6557648152486362c5d8cf78cf7aaa088908c" virustotal.com/gui/file/d0c73… Target:🇹🇷 C2: binsletr[.]net @malwrhunterteam @LukasStefanko @JAMESWT_MHT #android #banker #malware

SmashTheKernel's tweet image. Android Banker Incident

From: yuklesm[.]org
Name: 20gb_hediye_internet.apk

Hash"d0c73e7bb87c22cac394ed5691b6557648152486362c5d8cf78cf7aaa088908c"

virustotal.com/gui/file/d0c73…

Target:🇹🇷
C2: binsletr[.]net

@malwrhunterteam @LukasStefanko @JAMESWT_MHT
#android #banker #malware

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

May 11, 2020

Android Banker Incident Froms: sen-evdekal20gbkazan[.]com bitbucket[.]org/emreadamol/emreadamol34/downloads/20gbinternet-evdekal.apk 82d7f887ec682ef752f71119c5a31a415bd907864e0d207943a68916ec96b7b3 virustotal.com/gui/file/82d7f… C2: besieged[.]top @malwrhunterteam @LukasStefanko

SmashTheKernel's tweet image. Android Banker Incident

Froms:
sen-evdekal20gbkazan[.]com
bitbucket[.]org/emreadamol/emreadamol34/downloads/20gbinternet-evdekal.apk

82d7f887ec682ef752f71119c5a31a415bd907864e0d207943a68916ec96b7b3

virustotal.com/gui/file/82d7f…

C2: besieged[.]top

@malwrhunterteam @LukasStefanko

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

May 8, 2020

Indicator of Attack(IOA) vs. Indicator of Compromises(IOC) includes assets. The combination formed in the shadow of this conflict is Indicator of Pivoting (IOP) bit.ly/2YJnGPe #ThreatHunting #Threatanalysis #infosec

SmashTheKernel's tweet image. Indicator of Attack(IOA) vs. Indicator of Compromises(IOC) includes assets. The combination formed in the shadow of this conflict is Indicator of Pivoting (IOP)

bit.ly/2YJnGPe

#ThreatHunting #Threatanalysis #infosec

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷 reposted

Lukas Stefanko

@LukasStefanko

Apr 19, 2020

Anubis banking Trojan targets #Italy 🇮🇹 as Coronavirus map -campaign active from 21.03.2020 -server includes APK builder, with 130 already built APKs -~177 victims -C&C: https://files[.]ug

LukasStefanko's tweet image. Anubis banking Trojan targets #Italy 🇮🇹 as Coronavirus map

-campaign active from 21.03.2020
-server includes APK builder, with 130 already built APKs
-~177 victims
-C&amp;C: https://files[.]ug

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

Apr 19, 2020

A Covid-19 Cerberus Botnet Incident IOC From: virus-covid[.]online Name: covidMappia_v1.0.3.apk Hash:"70439d393cca65ede64971d923ed61c0dd332dad5e2c31fdf8d225db1cf933e8" virustotal.com/gui/file/70439… @malwrhunterteam @LukasStefanko #Cerberus #Android #Malware

SmashTheKernel's tweet image. A Covid-19 Cerberus Botnet Incident

IOC
From: virus-covid[.]online
Name: covidMappia_v1.0.3.apk
Hash:"70439d393cca65ede64971d923ed61c0dd332dad5e2c31fdf8d225db1cf933e8"

virustotal.com/gui/file/70439…

@malwrhunterteam @LukasStefanko

#Cerberus #Android #Malware

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

Apr 19, 2020

侍 𝑶𝒈𝒖𝒛𝒉𝒂𝒏 𝑨. 🇹🇷

@SmashTheKernel

Apr 17, 2020

An Anubis Botnet Incident Turkey🇹🇷 IOC From: evdekal-hediye-20gbnet[.]com Name: 20gb_hediye_internet.apk Hash:"7abe646fc8416e0f969a8b3c6ecf32140faf50f83af107192c9c2d2fe0b7b052" C&C: hxxp://ozkandan.com/o1o/a4.php virustotal.com/gui/file/7abe6… @malwrhunterteam @LukasStefanko #Anubis