Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 6ba5c46261ff52e7438f21ccef5f8c7eSHA1: acdf309fbfebecb7a93b78068fc1498fae4d9e62ANALYSIS DATE: 2023-02-01T11:38:44ZTTPS: T1222, T1158 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
NAME__________BaiCells Nova 227, Nova 233, Nova 243, and Nova 246 LTE TDD eNodeB devices code executionPlatforms Affected:BaiCells Nova 246 RTS/RTD...
NAME__________Apache Linkis code executionPlatforms Affected:Apache Linkis 1.3.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Linkis could allow a remote authenticated attacker to execute arbitrary...
NAME__________FreshTomato command executionPlatforms Affected:FreshTomato FreshTomato 2022.5Risk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________FreshTomato could allow a remote authenticated attacker to execute arbitrary commands on...
NAME__________ChangingTech MegaServiSignAdapter code executionPlatforms Affected:ChangingTech MegaServiSignAdapter 1.0.17.0823Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ChangingTech MegaServiSignAdapter could allow a remote attacker to execute arbitrary code...
NAME__________ContentStudio Plugin for WordPress security bypassPlatforms Affected:WordPress ContentStudio Plugin for WordPress 1.2.5Risk Level:8.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________ContentStudio Plugin for WordPress could allow...
NAME__________Apache Portable Runtime (APR) integer overflowPlatforms Affected:Apache Portable Runtime 1.6.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Portable Runtime (APR) could allow a remote...
NAME__________Apache Portable Runtime (APR) integer overflowPlatforms Affected:Apache Portable Runtime 1.7.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Portable Runtime (APR) could allow a remote...
NAME__________EFence SQL injectionPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________EFence is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements...
NAME__________Apache Portable Runtime (APR) integer overflowPlatforms Affected:Apache Portable Runtime 1.7.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Portable Runtime (APR) could allow a remote...
NAME__________femanager extension for TYPO3 security bypassPlatforms Affected:TYPO3 Femanager extension TYPO3 6.3.0 TYPO3 femanager extension for TYPO3 6.0.0 TYPO3 femanager extension...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-47966Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow...
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: a809cc37ab51220d8f957f9f67d57e09SHA1: bea4d2fb6764d041f89f78b5eadc2a5cd2dcfd59ANALYSIS DATE: 2023-02-01T02:45:25ZTTPS: T1012, T1120, T1082, T1112, T1491 ScoreMeaningExample10Known badA malware family was...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: bdc7ff51ade65fde49d77d149c3ab603SHA1: bce076a5c43cd896ecb92f8f26e40cf7d89731f2ANALYSIS DATE: 2023-02-01T03:46:45ZTTPS:...
Score: 10 MALWARE FAMILY: mazeTAGS:family:maze, ransomware, spyware, stealer, trojanMD5: ca927fc487ca5f9196493b8f22ff611cSHA1: afbe838c881e5b223351ff8fa05ddeb3678581baANALYSIS DATE: 2023-02-01T05:13:48ZTTPS: T1005, T1081, T1107, T1490, T1491, T1112, T1082...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 4936a6d56013bbedd4c7769e47481772SHA1: 7eb18b3bfd278e4825a23c0bb3fe739586e9d0f6ANALYSIS DATE: 2023-02-01T04:44:26ZTTPS: T1053, T1005, T1081, T1012,...
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: de49129aa659dec2af0736cb8bf08ebaSHA1: 24aa45280c7821e0c9e404f6ce846f1ce00b9823ANALYSIS DATE: 2023-02-01T05:12:57ZTTPS: T1082, T1491, T1112, T1130 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 5ac925dd0ed8f683443c4873fd48a37bSHA1: 97ddc705341f4825fe41c738cab0373851c52132ANALYSIS DATE: 2023-02-01T05:46:20ZTTPS:...
Score: 10 MALWARE FAMILY: sodinokibiTAGS:family:sodinokibi, botnet:$2a$10$qq5kf6jmnztrqdzq4ez/rez9tdkves4amex9dq.5v6uwjq4wsyzky, campaign:3537, ransomwareMD5: 4b4c98ac8f04680f7c529956cfe8519bSHA1: e6dccf4b1fc5ab116b6bc1321346b35dbf42f387ANALYSIS DATE: 2023-02-01T05:34:04ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 071c11210a2edc6b3d92fb55617dca53SHA1: 887064a172b18b0409ec880c7ecce2a10ba8d919ANALYSIS DATE: 2023-02-01T05:30:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Score: 8 MALWARE FAMILY: bankerTAGS:banker, ransomwareMD5: 1fa35993c075d9884558b6c7990cdc7eSHA1: 327cd6e3c8639b7681b49f4ce939fa8165029c6eANALYSIS DATE: 2023-02-01T05:23:57ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
What is sandfly-entropyscan? sandfly-entropyscan is a utility to quickly scan files or running processes and report on their entropy (measure...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
