Daily Vulnerability Trends: Sun Feb 12 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-25136OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This...
Malware Analysis – evasion – 0f743287c9911b4b1c726c7c7edcaf7d
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: 0f743287c9911b4b1c726c7c7edcaf7dSHA1: 9760579e73095455fcbaddfe1e7e98a2bb28bfe0ANALYSIS DATE: 2023-02-12T03:26:37ZTTPS: T1107, T1490, T1088, T1089, T1112, T1082, T1012, T1060,...
Malware Analysis – djvu – 546bd5b73d6424c4f1cab3f906dd208b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 546bd5b73d6424c4f1cab3f906dd208bSHA1: 547cc739d50e2e10a673a08ceb64dfd612dc5f32ANALYSIS DATE: 2023-02-12T03:16:19ZTTPS: T1082, T1005, T1081, T1053,...
Malware Analysis – ransomware – 68c331be8237bc02fbf7fbb14b4f83a7
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 68c331be8237bc02fbf7fbb14b4f83a7SHA1: f25e7c36050f186eaad48ae8fddbca1b95eff15fANALYSIS DATE: 2023-02-12T05:03:30ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – smokeloader – 8021460702777318a468e62cb10be252
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 8021460702777318a468e62cb10be252SHA1: fc90f57d99a60a507d1ac9b40a851c7c9c744f3eANALYSIS DATE: 2023-02-12T05:01:07ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 35681210de3f848707e16d15fe032f3b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:rhadamanthys, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, collection, discovery, evasion, persistence, ransomware, spyware, stealer, trojan,...
Malware Analysis – djvu – 38e31b1be1f167ad2d1d18c746a7c46f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, ransomwareMD5: 38e31b1be1f167ad2d1d18c746a7c46fSHA1: e1eebc90dae5caab44c04e852e7c31461269ca58ANALYSIS DATE: 2023-02-12T05:12:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – 4bf3d32d62e3530c55622ef97b9e11b8
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 4bf3d32d62e3530c55622ef97b9e11b8SHA1: 0f6f2bc85bd254290513018cb0aed59a537fb2c1ANALYSIS DATE: 2023-02-12T05:18:58ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – chaos – 6f604aeb2e1692200e0079e2c66e3142
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: 6f604aeb2e1692200e0079e2c66e3142SHA1: abb3c0372f463b2e6e33a2465ca52c93e43f69a7ANALYSIS DATE: 2023-02-12T05:26:04ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – chaos – 4c19104c6df0817095be0846b1607de6
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, ransomware, spyware, stealerMD5: 4c19104c6df0817095be0846b1607de6SHA1: ae3bf7a043cb10e8b206261af6af1558fc3d518bANALYSIS DATE: 2023-02-12T05:26:03ZTTPS: T1490, T1059, T1107, T1005, T1081, T1491, T1112,...
Malware Analysis – chaos – bbe2e0f186145fe66bf06909cfaf03a7
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: bbe2e0f186145fe66bf06909cfaf03a7SHA1: 19c9425cf3c6d5a53281b9544eaf6d1eff179767ANALYSIS DATE: 2023-02-12T05:26:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]56:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]203[.]70:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 89[.]107[.]59[.]15:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]24[.]208:2222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]148[.]149[.]21:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 3[.]85[.]177[.]52:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 92[.]119[.]157[.]86:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 216[.]83[.]38[.]235:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]9[.]74[.]66:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]254[.]200[.]241:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
LockBit 3.0 Ransomware Victim: transportsn[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – 2becc07b23585ab41b10d45a1f7e0d8a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 2becc07b23585ab41b10d45a1f7e0d8aSHA1:...
Malware Analysis – smokeloader – 3ef4b957cbd8922f5bba0cfc031a6c94
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3ef4b957cbd8922f5bba0cfc031a6c94SHA1: 50a7f4258f6eb1795c59b3799c70ff240022626aANALYSIS DATE: 2023-02-11T16:03:57ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
