This is a Threat Intelligence (TI) repository to store published indicators of compromise, threat detection rules and scripts from CUJO AI Labs reports.

The rules published here have been tested and it was made sure that they do not raise false positives, but they may need additional tuning if applied in your own environment. Keep that in mind!

We will house indicators of compromise (IoCs) digests here from our blogposts.

We may release certain decoding/decrypting scripts that will ease the analysis of the given malware families.

CUJO AI Labs - Threat Intelligence Team