Cobalt Stike Beacon Detected – 103[.]155[.]92[.]229:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]192[.]11[.]175:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]154[.]57[.]146:8002
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]189[.]12[.]60:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – e2aa8611ff12300ed35713bd5b396b2e
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e2aa8611ff12300ed35713bd5b396b2eSHA1: 21a61539cbd78c50ae43234657b0d7e6a6a81010ANALYSIS DATE: 2022-12-12T11:14:49ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 88c46c7fa052089249e07fc1425e07bd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 88c46c7fa052089249e07fc1425e07bdSHA1: f0e3c48f0aa75999b5f790faf3930b87e892b664ANALYSIS DATE: 2022-12-12T11:01:50ZTTPS: T1012, T1082, T1005, T1081,...
Malware Analysis – dcrat – ae28646e93a50694398096751b0e149f
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – dcrat – e2a32071d75e13ad12354cde287a1469
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware,...
LockBit 3.0 Ransomware Victim: jieh[.]vn
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: amazing-global[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
TrueBot infections were observed in Clop ransomware attacks
Researchers reported an increase in TrueBot infections, attackers have shifted from using malicious emails as their primary delivery method to other techniques....
Daily Vulnerability Trends: Mon Dec 12 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42703mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to...
Malware Analysis – evasion – e9663f1b8ec8a5e2c130f4ff496a43d8
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: e9663f1b8ec8a5e2c130f4ff496a43d8SHA1: ed373bf96e834f4bf920220cc61a84f064e1275aANALYSIS DATE: 2022-12-07T09:27:09ZTTPS: T1012, T1120, T1082, T1158, T1112, T1060 ScoreMeaningExample10Known badA malware...
Malware Analysis – djvu – 6ae2c7e69f7af191c459978a7ffbb2d6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6ae2c7e69f7af191c459978a7ffbb2d6SHA1: 64c504634fb86ae0cde436c50cefee73fb0f8e8fANALYSIS DATE: 2022-12-12T03:58:30ZTTPS: T1222, T1012, T1082, T1060,...
Malware Analysis – – 3a02deed11f7ff4dbc1188d201ad164a
Score: 8 MALWARE FAMILY: TAGS:MD5: 3a02deed11f7ff4dbc1188d201ad164aSHA1: 5c935f5c25c2975ef384878bb094567fb19519c9ANALYSIS DATE: 2022-12-12T04:09:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – smokeloader – 9b680fe6c94c5c5efd8d1ee47e6bc9a3
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 9b680fe6c94c5c5efd8d1ee47e6bc9a3SHA1: 07700e18220654e8334dd36db10c413543ab5f59ANALYSIS DATE: 2022-12-12T04:24:56ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 352a744e8b4258b7729581602709800a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 352a744e8b4258b7729581602709800aSHA1: a06aa0539924ca45f63ce74783d593e97ba1502cANALYSIS DATE: 2022-12-12T05:32:53ZTTPS: T1053, T1005, T1081, T1130,...
Malware Analysis – dcrat – fbdde4446467cf7b6e2edc26f470ed98
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Malware Analysis – djvu – 0bffab8de978679c204fe21331058575
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 0bffab8de978679c204fe21331058575SHA1: f3830a7b5b741df86cc52d7432a7d6a30a6772e6ANALYSIS DATE: 2022-12-12T05:02:15ZTTPS: T1082, T1053, T1005, T1081,...
Malware Analysis – dcrat – b046fd352da5913664316180e0e22633
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, rat, spyware,...
Cobalt Stike Beacon Detected – 20[.]12[.]210[.]245:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]92[.]95[.]200:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]91[.]33:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 83[.]97[.]20[.]148:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
