diff --git a/malware-tech_ref_and_memo.md b/malware-tech_ref_and_memo.md
index 053fd72..afa4d60 100644
--- a/malware-tech_ref_and_memo.md
+++ b/malware-tech_ref_and_memo.md
@@ -437,6 +437,12 @@ New-Object System.IO.Compression.DeflateStream([iO.mEmoRySTream] [sysTEM.ConVert
         > - Embed many non-ASCII characters.<br>
       - ref:
         - [DeCypherIT – All eggs in one basket](https://research.checkpoint.com/2019/decypherit-all-eggs-in-one-basket/)
+    - [TitanCrypt]
+    	- RyukやAmadeyで利用されていたCyptor
+	- ref:
+		- https://krabsonsecurity.com/2019/02/13/analyzing-amadey-a-simple-native-malware/
+		- https://twitter.com/VK_Intel/status/1142491697781362688
+		
 
 ## Anti-Unpacking
 ### Stolen Bytes(Stolen Codes)