Enigma, Vector, and TgToxic: The New Threats to Cryptocurrency Users
Suspected Russian threat actors have been targeting Eastern European users in the crypto industry with fake job opportunities...
CISA Warns of Active Attacks Exploiting Fortra MFT, TerraMaster NAS, and Intel Driver Flaws
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added three flaws to its Known Exploited Vulnerabilities (KEV) catalog,...
Hackers Create Malicious Dota 2 Game Modes to Secretly Access Players’ Systems
An unknown threat actor created malicious game modes for the Dota 2 multiplayer online battle arena (MOBA) video game...
Honeypot-Factory: The Use of Deception in ICS/OT Environments
There have been a number of reports of attacks on industrial control systems (ICS) in the past few years. Looking...
Patch Now: Apple’s iOS, iPadOS, macOS, and Safari Under Attack with New Zero-Day Flaw
Apple on Monday rolled out security updates for iOS, iPadOS, macOS, and Safari to address a zero-day flaw that it...
Chinese Tonto Team Hackers’ Second Attempt to Target Cybersecurity Firm Group-IB Fails
The advanced persistent threat (APT) actor known as Tonto Team carried out an unsuccessful attack on cybersecurity company Group-IB...
Massive HTTP DDoS Attack Hits Record High of 71 Million Requests/Second
Web infrastructure company Cloudflare on Monday disclosed that it thwarted a record-breaking distributed denial-of-service (DDoS) attack that peaked at over...
Daily Vulnerability Trends: Tue Feb 14 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-20076A vulnerability in the Cisco IOx application hosting environment could allow an...
Malware Analysis – smokeloader – 04b8f812baa7371b51a70202b2bb61cd
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 04b8f812baa7371b51a70202b2bb61cdSHA1: 8806b675560c8ef0feacbec2944fa764ea30ebc5ANALYSIS DATE: 2023-02-13T21:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 0969db4a1d191e1123fd93e5b93e678a
Score: 7 MALWARE FAMILY: persistenceTAGS:persistenceMD5: 0969db4a1d191e1123fd93e5b93e678aSHA1: 7ef148522510c4c683a98b545a2f721442cb3882ANALYSIS DATE: 2023-02-13T21:06:43ZTTPS: T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Cobalt Stike Beacon Detected – 109[.]172[.]45[.]77:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]174[.]186[.]22:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]215[.]245[.]9:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 108[.]61[.]75[.]119:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – f790b7551cb5ae4572d2d0564c80a641
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f790b7551cb5ae4572d2d0564c80a641SHA1: c7ae17ca4be16a176e39a870abfcd314a01d2704ANALYSIS DATE: 2023-02-13T21:33:09ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 117f96dfc0ab20f0d6eaf75163adc4bd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 117f96dfc0ab20f0d6eaf75163adc4bdSHA1: f7013ad41f52bcf45575e13e8c55b9e4abd10c11ANALYSIS DATE: 2023-02-13T22:25:01ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – a39b1c1c26ff233b02cbc9502e44c248
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: a39b1c1c26ff233b02cbc9502e44c248SHA1: 4ebbf8b4efba27429388e18db62d3e6e7a4a0131ANALYSIS DATE: 2023-02-13T21:40:05ZTTPS: T1005, T1081, T1082, T1222,...
Malware Analysis – dcrat – 6a23c189ce7698d8fdd6a1e40e973fb9
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer,...
Malware Analysis – djvu – 7143ef8e6f25a19691bd87a29462018f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, backdoor, clipper, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 7143ef8e6f25a19691bd87a29462018fSHA1: b2436b4e2fd3f40c38d4212947477a89fe634e3bANALYSIS...
Malware Analysis – djvu – c3d2d23a1bc7dc87e728d8d3f293aeec
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: c3d2d23a1bc7dc87e728d8d3f293aeecSHA1: db9ba277e1537dd42678fb149e1f4f60a087d935ANALYSIS DATE: 2023-02-13T23:20:19ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – ransomware – a53872097b49a45eeecaa869764e3062
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: a53872097b49a45eeecaa869764e3062SHA1: 5f763734bd4506ce22fc33ad241a1866ff53b451ANALYSIS DATE: 2023-02-13T22:45:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – aeb643589c3402273bbbc011412a62f2
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: aeb643589c3402273bbbc011412a62f2SHA1: 7595d9b873570a42c5290e14915a6f3a8629cb55ANALYSIS DATE: 2023-02-13T22:44:51ZTTPS: T1130, T1112, T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
LockBit 3.0 Ransomware Victim: makler[.]com[.]ve
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – 5d9ddf96915b5cc3112a2fe444eb4582
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5:...
