LockBit 3.0 Ransomware Victim: jetboxcargo[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 124[.]220[.]49[.]47:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]145[.]23[.]11:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]9[.]74[.]66:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]13[.]23[.]88:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]240[.]118[.]212:84
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]89[.]195[.]215:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]187[.]242:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]12[.]218[.]174:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]224[.]42[.]12:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]75[.]45:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]181[.]159[.]33:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]233[.]56[.]4:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Kliqqi-CMS admin/admin_update_module_widgets.php SQL injection | CVE-2020-21119
NAME__________Kliqqi-CMS admin/admin_update_module_widgets.php SQL injectionPlatforms Affected:Kliqqi-CMS Kliqqi-CMS 2.0.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Kliqqi-CMS is vulnerable to SQL injection. A remote authenticated attacker could...
Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalation | CVE-2022-31808
NAME__________Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalationPlatforms Affected:Siemens SiPass integrated AC5100 Siemens SiPass integrated AC5102 Siemens SiPass...
Fortinet Issues Patches for 40 Flaws Affecting FortiWeb, FortiOS, FortiOS, and FortiProxy
Fortinet has released security updates to address 40 vulnerabilities in its software lineup, including FortiWeb, FortiOS, FortiNAS, and FortiProxy, among...
Daily Vulnerability Trends: Sun Feb 19 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-47986IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a...
Malware Analysis – djvu – 4d3ae0bbcf5953b1dd4ccc5f202132f3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 4d3ae0bbcf5953b1dd4ccc5f202132f3SHA1: 33ad4091cdcf63cdb9c174ebd16249291a154e30ANALYSIS DATE: 2023-02-19T03:24:47ZTTPS: T1222, T1012, T1082, T1053,...
Malware Analysis – djvu – f06e766835d11056a74444cfba25c5ee
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: f06e766835d11056a74444cfba25c5eeSHA1:...
Malware Analysis – djvu – 80578882fdc407820d3ba7221d70a88f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 80578882fdc407820d3ba7221d70a88fSHA1: fa5b65b913365b5e3364627b8e5ffc623ed7d665ANALYSIS DATE: 2023-02-19T04:21:50ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – gandcrab – 7f97b34a113170d02ff8008c2bbc7745
Score: 10 MALWARE FAMILY: gandcrabTAGS:family:gandcrab, backdoor, persistence, ransomwareMD5: 7f97b34a113170d02ff8008c2bbc7745SHA1: fe00b8cfc0896d6d23ff3628af8c406a7683d707ANALYSIS DATE: 2023-02-19T04:44:04ZTTPS: T1012, T1082, T1060, T1112, T1120 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – fbed0748c6ea745024516ae3ef887279
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: fbed0748c6ea745024516ae3ef887279SHA1: 2d9d50f0cb9e4f29e770b8c472286366e8051e9fANALYSIS DATE: 2023-02-19T04:51:02ZTTPS: T1102 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 0ae455cfb95cbbe6037335cb088a4a0e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 0ae455cfb95cbbe6037335cb088a4a0eSHA1:...
Malware Analysis – chaos – f530883103009766083537a3bac26dfb
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomware, spyware, stealerMD5: f530883103009766083537a3bac26dfbSHA1: d2deb888522b6391cddf370a452d245005c52e77ANALYSIS DATE: 2023-02-19T04:44:06ZTTPS: T1005, T1081, T1082, T1491, T1112 ScoreMeaningExample10Known badA malware...
