Vice Society Ransomware Victim: PROQUINAL Spradling Group
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Royal Ransomware Victim: Bevolution Group
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Cobalt Stike Beacon Detected – 193[.]27[.]14[.]214:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]237[.]87:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]196[.]234[.]164:9998
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – – fbd028cd6727fa3feda537db1ed703f0
Score: 1 MALWARE FAMILY: TAGS:MD5: fbd028cd6727fa3feda537db1ed703f0SHA1: 99b2f3a80a07b920ff18ee6f7234d2ffe2574871ANALYSIS DATE: 2023-01-06T09:03:56ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 9320af1b7b22fdd4c17cca870c4ea0c4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: 9320af1b7b22fdd4c17cca870c4ea0c4SHA1: 2294407a9dedb18b7e633614761da98b35b741c6ANALYSIS DATE: 2023-01-06T09:01:03ZTTPS: T1130, T1112, T1060, T1222, T1082,...
Malware Analysis – spyware – 9c60113d492ebcf89e2b36af378654cf
Score: 8 MALWARE FAMILY: spywareTAGS:spyware, stealerMD5: 9c60113d492ebcf89e2b36af378654cfSHA1: 4b70fda198e03417c032e2f5675bc6d7b9890ec1ANALYSIS DATE: 2023-01-06T09:06:02ZTTPS: T1082, T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – amadey – daa0d1b1bd828f4343b830f047343993
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: daa0d1b1bd828f4343b830f047343993SHA1: 036b65fab9706cb52fcc7b59032d49b26bef1b7eANALYSIS DATE:...
Malware Analysis – djvu – d13c8f95955973410a07ba397d6a09d7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: d13c8f95955973410a07ba397d6a09d7SHA1: cd2457e2d32449e0fa823c1b86d9e56df3ff448fANALYSIS DATE: 2023-01-06T10:11:56ZTTPS: T1012, T1082, T1222, T1005,...
Malware Analysis – djvu – c0ff95f938e709e83f5872c0630a9b67
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, stealerMD5: c0ff95f938e709e83f5872c0630a9b67SHA1: 35254c0de46398670b5a9b4c6b9e6e9a953cc402ANALYSIS DATE: 2023-01-06T10:01:07ZTTPS: T1130, T1112, T1060, T1222, T1082,...
Malware Analysis – discovery – cea6e89b7b3774762f7f24147665da5b
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: cea6e89b7b3774762f7f24147665da5bSHA1: bbeb91e4098491ff0a7f5b9dfea902a81c917d05ANALYSIS DATE: 2023-01-06T09:26:08ZTTPS: T1012, T1082, T1112, T1042, T1060 ScoreMeaningExample10Known badA malware family...
Malware Analysis – djvu – 5c24f6f6c86564db7ea71bf01ec5dbc5
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 5c24f6f6c86564db7ea71bf01ec5dbc5SHA1: e0c5ac9895ba2621bb3ad63a3740d678d137dc59ANALYSIS DATE: 2023-01-06T11:43:32ZTTPS: T1060, T1112, T1053, T1012,...
Malware Analysis – asyncrat – 19c677bb8cda5703f42c143bb4251e6a
Score: 10 MALWARE FAMILY: asyncratTAGS:family:asyncrat, botnet:default, discovery, evasion, persistence, ransomware, rat, spyware, stealer, trojanMD5: 19c677bb8cda5703f42c143bb4251e6aSHA1: ad85336a7304a4e58b2a4f5c40b02f578aa00923ANALYSIS DATE: 2023-01-06T10:47:46ZTTPS: T1012, T1082,...
Malware Analysis – amadey – c3b88f8dfbc849ad2a6d3253febe5905
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: c3b88f8dfbc849ad2a6d3253febe5905SHA1: 88665567cd41b6d9a950727c16e038712dc08a07ANALYSIS DATE:...
Malware Analysis – wannacry – 115b1d97402bc50dacb74ba73c7464d2
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, ransomware, wormMD5: 115b1d97402bc50dacb74ba73c7464d2SHA1: 799abb0d4067ec605126cd40ce52949510a60cf7ANALYSIS DATE: 2023-01-06T11:00:52ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Hitachi Energy FOXMAN-UN and UNEM weak security | CVE-2022-3927
NAME__________Hitachi Energy FOXMAN-UN and UNEM weak securityPlatforms Affected:Hitachi Energy FOXMAN-UN R16A Hitachi Energy FOXMAN-UN R15B Hitachi Energy FOXMAN-UN R15A Hitachi...
MediaTek Android privilege escalation | CVE-2022-32665
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a remote attacker to gain elevated privileges on the...
Hitachi Energy FOXMAN-UN and UNEM information disclosure | CVE-2022-3929
NAME__________Hitachi Energy FOXMAN-UN and UNEM information disclosurePlatforms Affected:Hitachi Energy FOXMAN-UN R16A Hitachi Energy FOXMAN-UN R15B Hitachi Energy FOXMAN-UN R15A Hitachi...
Centos Web Panel command execution | CVE-2022-44877
NAME__________Centos Web Panel command executionPlatforms Affected:CentOS Web Panel CentOS Web PanelRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Centos Web Panel could allow a remote...
MediaTek Android privilege escalation | CVE-2022-32664
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a remote attacker to gain elevated privileges on the...
MediaTek Android privilege escalation | CVE-2022-32635
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:8.4Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local attacker to gain elevated privileges on the...
Daily Vulnerability Trends: Fri Jan 06 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-40517 No description provided CVE-2022-40520 No description provided CVE-2022-40518 No description provided...
Malware Analysis – amadey – 6efd0ee79db69cb68293eebd38c8ded2
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 6efd0ee79db69cb68293eebd38c8ded2SHA1: c3df1975f7165f1673d67a9ff57d1062be505616ANALYSIS DATE:...
