Brute Ratel C4 Detected – 167[.]71[.]62[.]156:3200
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
LIVEBOX Collaboration vDesk privilege escalation | CVE-2022-45172
NAME__________LIVEBOX Collaboration vDesk privilege escalationPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________LIVEBOX Collaboration vDesk could allow a remote attacker to gain elevated privileges...
Ampache cross-site scripting | CVE-2023-0606
NAME__________Ampache cross-site scriptingPlatforms Affected:Risk Level:9.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Ampache is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A...
Tenable tenable.io, tenable.sc and Nessus privilege escalation | CVE-2023-0524
NAME__________Tenable tenable.io, tenable.sc and Nessus privilege escalationPlatforms Affected:Tenable Network Security Nessus Tenable Tenable.io Tenable Tenable.scRisk Level:9.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Tenable tenable.io, tenable.sc...
Serenissima Informatica FastCheckIn directory traversal | CVE-2022-47768
NAME__________Serenissima Informatica FastCheckIn directory traversalPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Serenissima Informatica FastCheckIn could allow a remote attacker to traverse directories on...
Trend Micro Apex One file upload | CVE-2023-0587
NAME__________Trend Micro Apex One file uploadPlatforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Trend Micro Apex could allow a remote attacker to upload arbitrary...
Dompdf code execution | CVE-2023-23924
NAME__________Dompdf code executionPlatforms Affected:Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dompdf could allow a remote attacker to execute arbitrary code on the system, caused...
reason-jose security bypass | CVE-2023-23928
NAME__________reason-jose security bypassPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________reason-jose could allow a remote authenticated attacker to bypass security restrictions, caused by improper...
OrangeScrum directory traversal | CVE-2023-0454
NAME__________OrangeScrum directory traversalPlatforms Affected:Risk Level:8.1Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________OrangeScrum could allow a remote authenticated attacker to traverse directories on the...
LockBit 3.0 Ransomware Victim: iongroup[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Daily Vulnerability Trends: Thu Feb 02 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-26485Removing an XSLT parameter during processing could have lead to an exploitable...
LockBit 3.0 Ransomware Victim: pharmagestao[.]com[.]br
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – – 59e7451acc5feed8d6a314297a970ad4
Score: 1 MALWARE FAMILY: TAGS:MD5: 59e7451acc5feed8d6a314297a970ad4SHA1: 920ae92c754e70364329123687b21bbd983ae57bANALYSIS DATE: 2023-02-01T21:12:01ZTTPS: T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – amadey – 1fd5d23bab8f8f4073ca84e64593e277
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 1fd5d23bab8f8f4073ca84e64593e277SHA1: 63dc3ea29ba3b3887e4c03742c3f3894041c8312ANALYSIS DATE: 2023-02-01T21:15:58ZTTPS:...
Malware Analysis – discovery – d3add4ef9940f485a12da9e987771f32
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: d3add4ef9940f485a12da9e987771f32SHA1: 37870b8d6fc40baff80e30cd28fe1e4e01f471b8ANALYSIS DATE: 2023-02-01T22:30:19ZTTPS: T1082, T1012, T1112, T1042, T1060 ScoreMeaningExample10Known badA malware family...
Malware Analysis – discovery – 3c9feef5f4ded10f5aebe2d8e06ddf17
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 3c9feef5f4ded10f5aebe2d8e06ddf17SHA1: c1974124faf157e7683cd110d0ca6319676eed4eANALYSIS DATE: 2023-02-01T22:24:43ZTTPS: T1082, T1057, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – amadey – 12b8a1f114a8b3e2ce261847cffef2db
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 12b8a1f114a8b3e2ce261847cffef2dbSHA1: 13165ab78229bddefb49036b15a641c0d898485eANALYSIS DATE:...
Malware Analysis – discovery – d62342979412c311e9cda07fb7e31457
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: d62342979412c311e9cda07fb7e31457SHA1: 91019c22f1b2dfb3818af0364be37cd5c8dfec0cANALYSIS DATE: 2023-02-01T22:44:54ZTTPS: T1012, T1082, T1130, T1112, T1057 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – amadey – f9223ce10430ed989beb6315b8ef10ee
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, stealer, trojan, vmprotectMD5: f9223ce10430ed989beb6315b8ef10eeSHA1: e743ca02767c216b72506488a1ebcea005009823ANALYSIS DATE: 2023-02-01T23:13:52ZTTPS:...
Malware Analysis – djvu – b8ccee89fe62647ffa515842a7fc372c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: b8ccee89fe62647ffa515842a7fc372cSHA1: ff05bc15583f196940c11908793a515b38ae9594ANALYSIS DATE: 2023-02-01T23:26:15ZTTPS: T1222, T1053, T1005, T1081,...
Malware Analysis – discovery – 6ac694ad2f3d2ca003102f6e842b2eaf
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, trojanMD5: 6ac694ad2f3d2ca003102f6e842b2eafSHA1: 1aefddc5e887434ab99057ae2c12cbf17bf3ce04ANALYSIS DATE: 2023-02-01T22:59:50ZTTPS: T1012, T1082, T1112, T1018, T1060 ScoreMeaningExample10Known badA...
Brute Ratel C4 Detected – 52[.]194[.]178[.]19:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
HackerOne Bug Bounty Disclosure: html-injection–(stored)bycriptex
Programme HackerOne Judge.me Judge.me Submitted by criptex criptex Report HTML INJECTION (STORED) Full Report A considerable amount of time and...
HackerOne Bug Bounty Disclosure: self-xss-due-to-image-url-can-be-eploited-via-xssjacking-techniques-in-review-emailbypenguinshelp
Programme HackerOne Judge.me Judge.me Submitted by penguinshelp penguinshelp Report Self-XSS due to image URL can be eploited via XSSJacking techniques...
