8 Base Ransomware Victim: HELPHONE
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: COMPAGNIE REGIONALE D’ALIMENTS (COREAL)
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: CONTASS
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: M Metzler & Associates
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: Ellard-Willson Engineering Ltd
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: Zenex
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: General de Alimentos Nisa C[.]A[.] (GENICA)
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: Lake Cable
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
EndExt – Go Tool For Extracting All The Possible Endpoints From The JS Files
EndExt is a .go tool for extracting all the possible endpoints from the JS files Idea When you crawll all...
Daily Threat Intelligence – June 22 – 2023
Apple on Wednesday resolved three zero-day vulnerabilities that were being actively exploited in attacks aimed at installing the TriangleDB spyware...
Malware Analysis – amadey – feb6ecd04a1ad4ea6336f1c5e0f7c07c
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:fabookie, family:smokeloader, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, botnet:pub1, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: feb6ecd04a1ad4ea6336f1c5e0f7c07cSHA1: 2b3e00704e2780d33f0ce72bbd8f61115f8c55dcANALYSIS...
Malware Analysis – djvu – 9a978ce2ff697915c879d31785b37e16
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: 9a978ce2ff697915c879d31785b37e16SHA1: bc58374ccf7bff13fb0bf0dfe17fb32c979979f4ANALYSIS DATE: 2023-06-22T15:58:08ZTTPS: T1060, T1112, T1222, T1082,...
Malware Analysis – persistence – 52105eaff1b7b02bf950b80771e9bda9
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: 52105eaff1b7b02bf950b80771e9bda9SHA1: e16ecdfebf018faa7d4cf92ea03de06e5aa3e861ANALYSIS DATE: 2023-06-22T17:04:09ZTTPS: T1107, T1490, T1112, T1057, T1060, T1082, T1012, T1120,...
Malware Analysis – djvu – 0fa8f9afbe4ca05578fbc00fe8fd1e45
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: 0fa8f9afbe4ca05578fbc00fe8fd1e45SHA1: b41ce3a558f981cbcc4819654564c8c497607611ANALYSIS DATE: 2023-06-22T16:15:27ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – d66da7cdb4b5e5f5b18d686da4ea9d5c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:153ce668f1e21829c936c2b11fa4d869, discovery, persistence, ransomware, spyware, stealerMD5: d66da7cdb4b5e5f5b18d686da4ea9d5cSHA1: 763add994f6ca9f305dcc21487da30de5aeaeeb4ANALYSIS DATE: 2023-06-22T16:37:55ZTTPS: T1005, T1081, T1222, T1082,...
Malware Analysis – amadey – 9c13d9bdb722f723067c315d716e8128
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, botnet:pub1, backdoor, discovery, ransomware, trojanMD5: 9c13d9bdb722f723067c315d716e8128SHA1: f3398068d3e4f085a9a44adee2ebca5f60082ab2ANALYSIS DATE: 2023-06-22T16:35:54ZTTPS: T1012, T1120, T1082, T1222...
Malware Analysis – persistence – a84957660902eb17fd021f3d187fb787
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealerMD5: a84957660902eb17fd021f3d187fb787SHA1: cb3700cb561a449e6ff88978fb4ce1495982fe95ANALYSIS DATE: 2023-06-22T17:04:24ZTTPS: T1112, T1060, T1005, T1081, T1107, T1490, T1012, T1120,...
Malware Analysis – evasion – 642dbe8b752b0dc735e9422d903e0e97
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomware, spyware, stealerMD5: 642dbe8b752b0dc735e9422d903e0e97SHA1: df40a22f138548f4af363766eec48a4ea8b11fafANALYSIS DATE: 2023-06-22T17:05:02ZTTPS: T1490, T1059, T1107, T1082, T1012, T1491, T1112, T1005,...
Malware Analysis – persistence – a0aad92f585dfc6ac762b5fc829e6fba
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: a0aad92f585dfc6ac762b5fc829e6fbaSHA1: 9ad2ae2c7fda526131ad6d535b21fe55d027d3aaANALYSIS DATE: 2023-06-22T17:04:36ZTTPS: T1060, T1112, T1082, T1057 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – adware – d729bf541459730df3ed688e115be8c8
Score: 9 MALWARE FAMILY: adwareTAGS:adware, bootkit, discovery, evasion, persistence, spyware, stealer, trojanMD5: d729bf541459730df3ed688e115be8c8SHA1: 93874ffeed48a4a7b035c1e2593f7fde3560a531ANALYSIS DATE: 2023-06-22T17:35:31ZTTPS: T1060, T1112, T1012, T1120,...
CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog
CISA Adds Six Known Exploited Vulnerabilities to Catalog CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Juniper Networks Releases Security Advisory for Junos OS and Junos OS Evolved
Juniper Networks Releases Security Advisory for Junos OS and Junos OS Evolved Juniper Networks has released a security advisory that...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on June 22, 2023. These...
Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware
The Chinese cyber espionage actor known as Camaro Dragon has been observed leveraging a new strain of self-propagating malware that...
