Malware and DFIR Research

Welcome to Atomic Matryoshka, a cybersecurity blog dedicated to malware reversing, digital forensics, and incident response. Check out the latest content and feel free to share with the greater community.

Explore

Buy Me a Coffee

Malicious C2 Domains: How to stomp a moving target

z3r0day_504

Jul 6, 2021
4 min

Malicious C2 Domains: How to stomp a moving target

It's rare to find single-stage malware that is powerful, tailored, and effective on a particular target. How do attackers retain control...

11 views0 comments

Web Shells: The Hacker's Pearl in a Sea of Networked Environments

z3r0day_504

Jun 27, 2021
3 min

Web Shells: The Hacker's Pearl in a Sea of Networked Environments

In this blog post, we break down what a web shell is and why it poses a risk to a digital environment, review a recent event involving...

7 views0 comments

z3r0day_504

Jun 18, 2021
4 min

Windows Authentication Bypass via Accessibility Binaries

We've probably all encountered the frustrating moment of trying to login to your computer after a brief hiatus from work or school, to ...

7 views0 comments

RANSOMWARE: WHAT IS IT AND WHY HAS IT TAKEN CYBERSPACE BY STORM?

z3r0day_504

Jun 3, 2021
5 min

RANSOMWARE: WHAT IS IT AND WHY HAS IT TAKEN CYBERSPACE BY STORM?

Unfortunately there is no rarity in daily news reporting on a new corporate victim of ransomware. The general population is most privy to...

0 views0 comments

z3r0day_504

May 28, 2021
4 min

BASIC SECURITY LOG ANALYSIS ON WINDOWS

Security log analysis is helpful and effective on Windows when it comes to characterizing activity involving user accounts, remote access...

6 views0 comments

CONTACT

atomicmatryoshka@gmail.com

Malware and DFIR Research

Malicious C2 Domains: How to stomp a moving target

Web Shells: The Hacker's Pearl in a Sea of Networked Environments

Windows Authentication Bypass via Accessibility Binaries

RANSOMWARE: WHAT IS IT AND WHY HAS IT TAKEN CYBERSPACE BY STORM?

BASIC SECURITY LOG ANALYSIS ON WINDOWS

Subscribe Form

CONTACT