Cobalt Stike Beacon Detected – 146[.]190[.]164[.]193:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: ba1e76cfbd9461a75cea4976aec75450SHA1: d031a3a2a9880ff09589d5b8d5fc0cadee3fa73aANALYSIS DATE: 2023-02-18T10:55:08ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, phishing, ransomwareMD5: 87cee2eb9b9190baf07970bbf9b2975cSHA1: 156dbed1d99359a498021e7684f518a926630814ANALYSIS DATE: 2023-02-18T09:57:53ZTTPS: T1012, T1082, T1112, T1060, T1042 ScoreMeaningExample10Known badA malware...
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 91ff0a576c00974ac41c59675fc4e2afSHA1: f786896607489c7c967cbb4f04688e42042bb261ANALYSIS DATE: 2023-02-18T11:02:38ZTTPS: T1060, T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 6f676a2ba7c6aadee8edf99abcdd3600SHA1:...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 3eb8fc05a7968465034bafd019786578SHA1:...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: b57dcc7a7a09f7bade0edc670e8f71b7SHA1: dac61b151a9fc6235ffcf1cbd66eb561fbf8e405ANALYSIS DATE: 2023-02-18T11:41:54ZTTPS: T1012, T1082, T1053, T1005,...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 14a6e77f2cf391b679fe64638d7d51cbSHA1: 0b8280d789e95fda1ff5fc93ac9d78d6c7c29679ANALYSIS DATE: 2023-02-18T11:38:28ZTTPS: T1222, T1053, T1005, T1081,...
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 47c4a8f56f5770a8371c0464e133ece6SHA1: afc27e538f9cc3983020790880601fcc00b9c6e7ANALYSIS DATE: 2023-02-18T11:41:24ZTTPS: T1060, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
NAME__________NETGEAR WNDR3700v2 denial of servicePlatforms Affected:NETGEAR WNDR3700v2 1.0.1.14Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NETGEAR WNDR3700v2 is vulnerable to a denial of service,...
NAME__________NETGEAR WNDR3700v2 denial of servicePlatforms Affected:NETGEAR WNDR3700v2 1.0.1.14Risk Level:2.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NETGEAR WNDR3700v2 is vulnerable to a denial of service,...
NAME__________NETGEAR WNDR3700v2 command executionPlatforms Affected:NETGEAR WNDR3700v2 1.0.1.14Risk Level:4.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR WNDR3700v2 could allow a remote authenticated attacker to execute arbitrary...
NAME__________Sequelize information disclosurePlatforms Affected:Sequelize Sequelize 6.28.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sequelize could allow a remote attacker to obtain sensitive information, caused by...
NAME__________containerd denial of servicePlatforms Affected:containerd containerd 1.6.0 containerd containerd 1.5.17 containerd containerd 1.6.17Risk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________containerd is vulnerable to...
NAME__________Fortinet FortiWeb buffer overflowPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiWeb is vulnerable to a heap-based buffer overflow, caused by improper bounds...
NAME__________Fortinet FortiNAC XML external entity injectionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiNAC is vulnerable to an XML external entity injection (XXE)...
NAME__________Fortinet FortiWeb directory traversalPlatforms Affected:Risk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiWeb could allow a remote authenticated attacker to traverse directories on the...
NAME__________Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalationPlatforms Affected:Siemens SiPass integrated AC5100 Siemens SiPass integrated AC5102 Siemens SiPass...
NAME__________Fortinet FortiWeb directory traversalPlatforms Affected:Risk Level:5.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiWeb could allow a remote authenticated attacker within the local network to...
NAME__________HashiCorp Nomad and Nomad Enterprise denial of servicePlatforms Affected:HashiCorp Nomad 1.2.15 HashiCorp Nomad 1.3.8 HashiCorp Nomad 1.4.3 HashiCorp Nomad Enterprise...
NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Online Pizza Ordering System Online Pizza Ordering System 1.0Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering...