Cobalt Stike Beacon Detected – 119[.]23[.]61[.]52:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – fadd46a249a193e6611108d2b56332d4
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: fadd46a249a193e6611108d2b56332d4SHA1: 359eb590c8151019cba624e02c4fd914eca6c061ANALYSIS DATE: 2022-12-27T21:44:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 5[.]188[.]86[.]196:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]216[.]71[.]178:8011
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – ac92e8ecd550b8078e7482534a3c1fb9
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: ac92e8ecd550b8078e7482534a3c1fb9SHA1: dd376d8bdeb08599192be67098824c874c260e2eANALYSIS DATE: 2022-12-27T21:54:22ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 6018ee32726b6359a33b58aafc6102db
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 6018ee32726b6359a33b58aafc6102dbSHA1: 7c3a2b34f91af59f39cc8301852434c583a85379ANALYSIS DATE: 2022-12-27T21:57:35ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – f509a9c8b550834134c1dbcdd8a19850
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: f509a9c8b550834134c1dbcdd8a19850SHA1: affc52c4743a35846abbbca3253f35e1eb369690ANALYSIS DATE: 2022-12-27T22:03:10ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...
Cobalt Stike Beacon Detected – 43[.]128[.]72[.]129:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]134[.]96[.]195:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]225[.]73[.]244:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]79[.]14[.]10:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – a4824e4321a0510726acc06230b22078
Score: 6 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: a4824e4321a0510726acc06230b22078SHA1: 3e5077ccb1ce88fcb496b82e15318382191a9747ANALYSIS DATE: 2022-12-27T22:12:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – djvu – 8cd13cde3b9cad160fe35cd3f90450b6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 8cd13cde3b9cad160fe35cd3f90450b6SHA1: 295ef7114c70dc757b3e77a3528ca0ce76216720ANALYSIS DATE: 2022-12-27T22:19:38ZTTPS: T1005, T1081, T1012, T1082, T1053, T1060,...
Malware Analysis – evasion – 50448dd991e3a795303903da1a313e97
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 50448dd991e3a795303903da1a313e97SHA1: 8bc29df5fef20df7d8ada903aa6a8efba03d7c9eANALYSIS DATE: 2022-12-27T22:34:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – evasion – b09be4c99c439a41bbc2b1a71169f695
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: b09be4c99c439a41bbc2b1a71169f695SHA1: 73143ca8bdcdc2dd1f5f2c04f1b7727684953afeANALYSIS DATE: 2022-12-27T23:34:03ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – phobos – b2f083ee365141030c49ddffc325f6be
Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: b2f083ee365141030c49ddffc325f6beSHA1: f1091be7e566d068403a87b0e7ed4b959c952c8eANALYSIS DATE: 2022-12-27T15:34:01ZTTPS: T1490, T1059, T1107, T1005, T1081, T1112,...
HackerOne Bug Bounty Disclosure: smtp-command-injection-in-appointment-emails-via-newlinesbyspaceraccoon
Programme HackerOne Nextcloud Nextcloud Submitted by spaceraccoon spaceraccoon Report SMTP Command Injection in Appointment Emails via Newlines Full Report A...
Royal Ransomware Victim: Grupo Ibiapina Ltda
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: HELMA Eigenheimbau AG
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: Inforlandia
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: INTRADO
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – evasion – 58bfb77a4d2a255dbb215eacddc00550
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 58bfb77a4d2a255dbb215eacddc00550SHA1: e0fd8e025ed77e78453754a2c4a5775cfceee8d3ANALYSIS DATE: 2022-12-27T15:48:02ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – persistence – fb8898216510c6af50a7aa81e23c35cb
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, spyware, stealer, upxMD5: fb8898216510c6af50a7aa81e23c35cbSHA1: 41d42f120ba66bc69efb3a2e1af47e197242f3a2ANALYSIS DATE: 2022-12-27T15:58:42ZTTPS: T1018, T1060, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – ec879183dee40f1831338a7a80a25c5e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: ec879183dee40f1831338a7a80a25c5eSHA1: 0a095bd1188716fe1c19640dc2aa7f971b689995ANALYSIS DATE: 2022-12-27T15:54:22ZTTPS: T1053, T1005, T1081, T1012, T1082, T1060,...
