BlackCat/ALPHV Ransomware Victim: Copper Mountain
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – djvu – 9d1e9d088036afdacfb2f89ca29dd137
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 9d1e9d088036afdacfb2f89ca29dd137SHA1: 1743eb444c948dbdf2d58508a72851daee0b6d69ANALYSIS DATE: 2023-01-26T03:02:38ZTTPS:...
Malware Analysis – djvu – 5d45ed8d173bcc871ca7c828b09832f3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 5d45ed8d173bcc871ca7c828b09832f3SHA1: 8281eace3216fd0416ac4a0cf86f9169e8120fb5ANALYSIS DATE: 2023-01-26T03:18:18ZTTPS:...
Malware Analysis – medusalocker – 646698572afbbf24f50ec5681feb2db7
Score: 10 MALWARE FAMILY: medusalockerTAGS:family:medusalocker, evasion, ransomware, spyware, stealer, trojanMD5: 646698572afbbf24f50ec5681feb2db7SHA1: 70530bc23bad38e6aee66cbb2c2f58a96a18fb79ANALYSIS DATE: 2023-01-26T05:33:48ZTTPS: T1082, T1112, T1012, T1120, T1107, T1490,...
Malware Analysis – discovery – c2cf2b9242a2dd7550a36f63467c30b2
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: c2cf2b9242a2dd7550a36f63467c30b2SHA1: 196236477150bd5ccd5fb17b0d01017d9eda47bcANALYSIS DATE: 2023-01-26T05:23:31ZTTPS: T1060, T1082, T1057, T1012 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – discovery – 39945d030f4f19876d81dd4f16ac8369
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 39945d030f4f19876d81dd4f16ac8369SHA1: e4ff8415a04dca259205298d27236092d360dbb3ANALYSIS DATE: 2023-01-26T04:16:30ZTTPS: T1060, T1012, T1120, T1082, T1102 ScoreMeaningExample10Known badA malware family...
Malware Analysis – – f26a8722a6deec5f530ebcfd2469087f
Score: 7 MALWARE FAMILY: TAGS:MD5: f26a8722a6deec5f530ebcfd2469087fSHA1: 7153ef673457d29166228f5977dff128722cf0d4ANALYSIS DATE: 2023-01-26T04:41:36ZTTPS: T1082, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – dharma – 8bacbf2e386dbc47af1f1390e1bdbbf7
Score: 10 MALWARE FAMILY: dharmaTAGS:family:dharma, persistence, ransomware, spyware, stealerMD5: 8bacbf2e386dbc47af1f1390e1bdbbf7SHA1: 1101a108e9ae5aa0a0b905dd3cbbbaa05b7dd41dANALYSIS DATE: 2023-01-26T05:33:52ZTTPS: T1107, T1490, T1005, T1081, T1082, T1112, T1060...
Malware Analysis – persistence – 20ebc478a429ac5c954870668f453cb2
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 20ebc478a429ac5c954870668f453cb2SHA1: 91c5fa33d5848a4e5bce867cf06a760aafd9dbd0ANALYSIS DATE: 2023-01-26T05:33:55ZTTPS: T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – ransomware – f7b5b9fd8c7020dedb138ef75190dffc
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f7b5b9fd8c7020dedb138ef75190dffcSHA1: adebd8a52b6dc9ad35dee583eae8d93e0040b837ANALYSIS DATE: 2023-01-26T05:34:00ZTTPS: T1012, T1120, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 504863d5dc6d3062a34f399173b61ec7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 504863d5dc6d3062a34f399173b61ec7SHA1: c895012708971193f8462d28860bacfe3e36d510ANALYSIS DATE: 2023-01-26T05:42:07ZTTPS:...
Cobalt Stike Beacon Detected – 3[.]90[.]213[.]150:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 118[.]31[.]8[.]234:9955
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]204[.]43[.]31:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]221[.]169[.]111:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 35[.]72[.]0[.]113:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Brute Ratel C4 Detected – 149[.]28[.]251[.]203:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
CISA: CISA, NSA, and MS-ISAC Release Advisory on the Malicious Use of RMM Software
CISA, NSA, and MS-ISAC Release Advisory on the Malicious Use of RMM Software Today, the Cybersecurity and Infrastructure Security Agency...
CISA: VMware Releases Security Updates for VMware vRealize Log Insight
VMware Releases Security Updates for VMware vRealize Log Insight VMware released security updates to address multiple vulnerabilities in VMware vRealize...
DC-Sonar – Analyzing AD Domains For Security Risks Related To User Accounts
DC Sonar Community Repositories The project consists of repositories: dc-sonar-frontend dc-sonar-user-layer dc-sonar-workers-layer ntlm-scrutinizer Disclaimer It's only for education purposes. Avoid...
Cobalt Stike Beacon Detected – 124[.]223[.]215[.]12:8091
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]197[.]201[.]242:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]161[.]229[.]168:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]101[.]1[.]65:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
