Massive HTTP DDoS Attack Hits Record High of 71 Million Requests/Second
Web infrastructure company Cloudflare on Monday disclosed that it thwarted a record-breaking distributed denial-of-service (DDoS) attack that peaked at over...
Daily Vulnerability Trends: Tue Feb 14 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-20076A vulnerability in the Cisco IOx application hosting environment could allow an...
Malware Analysis – smokeloader – 04b8f812baa7371b51a70202b2bb61cd
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 04b8f812baa7371b51a70202b2bb61cdSHA1: 8806b675560c8ef0feacbec2944fa764ea30ebc5ANALYSIS DATE: 2023-02-13T21:32:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – persistence – 0969db4a1d191e1123fd93e5b93e678a
Score: 7 MALWARE FAMILY: persistenceTAGS:persistenceMD5: 0969db4a1d191e1123fd93e5b93e678aSHA1: 7ef148522510c4c683a98b545a2f721442cb3882ANALYSIS DATE: 2023-02-13T21:06:43ZTTPS: T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Cobalt Stike Beacon Detected – 109[.]172[.]45[.]77:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]174[.]186[.]22:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]215[.]245[.]9:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 108[.]61[.]75[.]119:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – f790b7551cb5ae4572d2d0564c80a641
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f790b7551cb5ae4572d2d0564c80a641SHA1: c7ae17ca4be16a176e39a870abfcd314a01d2704ANALYSIS DATE: 2023-02-13T21:33:09ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 117f96dfc0ab20f0d6eaf75163adc4bd
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 117f96dfc0ab20f0d6eaf75163adc4bdSHA1: f7013ad41f52bcf45575e13e8c55b9e4abd10c11ANALYSIS DATE: 2023-02-13T22:25:01ZTTPS: T1005, T1081, T1060, T1112,...
Malware Analysis – djvu – a39b1c1c26ff233b02cbc9502e44c248
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: a39b1c1c26ff233b02cbc9502e44c248SHA1: 4ebbf8b4efba27429388e18db62d3e6e7a4a0131ANALYSIS DATE: 2023-02-13T21:40:05ZTTPS: T1005, T1081, T1082, T1222,...
Malware Analysis – dcrat – 6a23c189ce7698d8fdd6a1e40e973fb9
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer,...
Malware Analysis – djvu – 7143ef8e6f25a19691bd87a29462018f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, backdoor, clipper, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 7143ef8e6f25a19691bd87a29462018fSHA1: b2436b4e2fd3f40c38d4212947477a89fe634e3bANALYSIS...
Malware Analysis – djvu – c3d2d23a1bc7dc87e728d8d3f293aeec
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: c3d2d23a1bc7dc87e728d8d3f293aeecSHA1: db9ba277e1537dd42678fb149e1f4f60a087d935ANALYSIS DATE: 2023-02-13T23:20:19ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – ransomware – a53872097b49a45eeecaa869764e3062
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: a53872097b49a45eeecaa869764e3062SHA1: 5f763734bd4506ce22fc33ad241a1866ff53b451ANALYSIS DATE: 2023-02-13T22:45:21ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – aeb643589c3402273bbbc011412a62f2
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: aeb643589c3402273bbbc011412a62f2SHA1: 7595d9b873570a42c5290e14915a6f3a8629cb55ANALYSIS DATE: 2023-02-13T22:44:51ZTTPS: T1130, T1112, T1082, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
LockBit 3.0 Ransomware Victim: makler[.]com[.]ve
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – 5d9ddf96915b5cc3112a2fe444eb4582
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5:...
Malware Analysis – smokeloader – fd466943736431592f5d3100cc5ef176
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fd466943736431592f5d3100cc5ef176SHA1: ed2f661153cd32ba1fe2a3a46be0c2c8904f38c8ANALYSIS DATE: 2023-02-13T15:34:56ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 8d209026b323ff5940c7eee209b6d4b1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 8d209026b323ff5940c7eee209b6d4b1SHA1: 83f572f25541b7b94f98fc89134563ce3754a335ANALYSIS DATE: 2023-02-13T15:10:37ZTTPS: T1082, T1060, T1112, T1053,...
HackerOne Bug Bounty Disclosure: splunk-sensitive-information-disclosure-@axiellstore-usahec-orgbyspell1
Programme HackerOne U.S. Dept Of Defense U.S. Dept Of Defense Submitted by spell1 spell1 Report Splunk Sensitive Information Disclosure @axiellstore.usahec.org...
HackerOne Bug Bounty Disclosure: the-deleted-polls-is-still-accessable-after-30-daysbyeissen5c
Programme HackerOne Twitter Twitter Submitted by eissen5c eissen5c Report The Deleted Polls is Still Accessable after 30 Days Full Report...
Malware Analysis – djvu – 805a09fc14592c2acfbb1eb90502f8a7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 805a09fc14592c2acfbb1eb90502f8a7SHA1: 289a454f384c9027904cfce7d69c7c1626c2ca87ANALYSIS DATE: 2023-02-13T16:36:03ZTTPS: T1082, T1005, T1081, T1060,...
Malware Analysis – djvu – dbdfd12830b865ceb0b6bdcdb9c6ddec
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: dbdfd12830b865ceb0b6bdcdb9c6ddecSHA1: c0e3cec4e0e44918037549d8e50863a4791a8eb3ANALYSIS DATE: 2023-02-13T16:40:19ZTTPS: T1005, T1081, T1012, T1060,...
