Cobalt Stike Beacon Detected – 185[.]11[.]61[.]199:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 111[.]230[.]242[.]129:2095
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]232[.]22[.]171:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]30[.]17[.]40:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 173[.]82[.]192[.]38:9080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]174[.]101[.]68:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]11[.]76:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 5060fdbb4141d1d43508370007ccd2ac
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 5060fdbb4141d1d43508370007ccd2acSHA1: c98db3fb351e5d5c1380249d7ddd2f50700fb617ANALYSIS DATE: 2023-02-23T23:53:04ZTTPS: T1012, T1082, T1222, T1005, T1081,...
Malware Analysis – djvu – 9d86653d1afc5b5b5ab85d608966e614
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:pseudomanuscrypt, family:smokeloader, family:vidar, backdoor, discovery, evasion, loader, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 9d86653d1afc5b5b5ab85d608966e614SHA1: 8cdad8c3f8863a4eeeb6ee6f27b51d8158d3bbfaANALYSIS...
Malware Analysis – djvu – f25b12eed68afac4c658397c77ae2923
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: f25b12eed68afac4c658397c77ae2923SHA1: 666794417970056a1741b680dbed2a1dd1f4f279ANALYSIS DATE: 2023-02-23T23:52:29ZTTPS: T1012, T1082, T1053, T1005, T1081,...
US-CERT Bulletin (SB23-052):Vulnerability Summary for the Week of February 13, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Malware Analysis – – 472abbedcbad24dba5b5f5e8d02c340f
Score: 1 MALWARE FAMILY: TAGS:MD5: 472abbedcbad24dba5b5f5e8d02c340fSHA1: 974f62b5c2e149c3879dd16e5a9dbb9406c3db85ANALYSIS DATE: 2023-02-23T14:34:01ZTTPS: T1112, T1012, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – mountlocker – 0aacf2c41ba9b872a52055ffcaeaef15
Score: 10 MALWARE FAMILY: mountlockerTAGS:family:mountlocker, ransomwareMD5: 0aacf2c41ba9b872a52055ffcaeaef15SHA1: c09b509699aeef71f3e205d53c5f4ff71cb48570ANALYSIS DATE: 2023-02-23T16:02:30ZTTPS: T1112, T1107, T1490, T1158 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – e9906e8971a3ab245016d1a0fab0f94d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:pseudomanuscrypt, family:smokeloader, family:vidar, backdoor, discovery, evasion, loader, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: e9906e8971a3ab245016d1a0fab0f94dSHA1: bf301e931741109da5bda00abdd83b4bcc30aee3ANALYSIS...
Malware Analysis – djvu – 463023befd73ec21c8ada33cba37de13
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 463023befd73ec21c8ada33cba37de13SHA1: 112c05deee2cfef09a6300c02ec29d33ac1da055ANALYSIS DATE: 2023-02-23T16:11:55ZTTPS: T1060, T1112, T1082, T1053, T1005,...
Malware Analysis – discovery – 7b89518d8d9d7eb4394dea53e42d4f81
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 7b89518d8d9d7eb4394dea53e42d4f81SHA1: e40d893f22d6da1396c864dd814360114ddb6a5cANALYSIS DATE: 2023-02-23T16:19:21ZTTPS: T1082, T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – a1d2f5979604c9c1d46c896ab1b9f3b6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: a1d2f5979604c9c1d46c896ab1b9f3b6SHA1: 245e2a40e7cfd01ac890ab9de979ebb265b3092eANALYSIS DATE: 2023-02-23T16:10:24ZTTPS: T1012, T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – bb1ceae3834709de46833deea9f4927c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: bb1ceae3834709de46833deea9f4927cSHA1: 350184737a3293cf0bfb16c687cb57e3e4339672ANALYSIS DATE: 2023-02-23T16:51:22ZTTPS: T1222, T1082, T1053, T1012, T1005,...
Malware Analysis – djvu – 6fb398c93bbe1ce6af0d0d3cf0b1a699
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 6fb398c93bbe1ce6af0d0d3cf0b1a699SHA1: 0d8768ad8290b0db7a8c2d44aa68fe84dbfbbc24ANALYSIS DATE: 2023-02-23T16:55:31ZTTPS: T1222, T1053, T1012, T1082, T1005,...
Malware Analysis – djvu – c5fc1f574f281aa6aaa5ab0f8a829018
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:pseudomanuscrypt, family:smokeloader, family:vidar, backdoor, discovery, evasion, loader, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: c5fc1f574f281aa6aaa5ab0f8a829018SHA1: 85bc7e3560825623eab6cc767bab68efb143b3efANALYSIS...
Malware Analysis – djvu – acb7b62e1f6082d8ad7d7d4fbae292d8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, backdoor, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: acb7b62e1f6082d8ad7d7d4fbae292d8SHA1: a098569d871d21f8380ac0245a4dd8bd90af0a1eANALYSIS DATE: 2023-02-23T16:32:54ZTTPS: T1060,...
CISA: VMware Releases Security Updates for Carbon Black App Control
VMware Releases Security Updates for Carbon Black App Control VMware has released security updates to address a vulnerability in Carbon...
New S1deload Malware Hijacking Users’ Social Media Accounts and Mining Cryptocurrency
An active malware campaign has set its sights on Facebook and YouTube users by leveraging a new information stealer to...
New Hacking Cluster ‘Clasiopa’ Targeting Materials Research Organizations in Asia
Materials research organizations in Asia have been targeted by a previously unknown threat actor using a distinct set of tools....
