Cuba Ransomware Victim: Boss-inc
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Cuba Ransomware Victim: Generator-power
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Cuba Ransomware Victim: Landaumedia
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
DomainDouche – OSINT Tool to Abuse SecurityTrails Domain Suggestion API To Find Potentially Related Domains By Keyword And Brute Force
Abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force. Use it while it still...
Cobalt Stike Beacon Detected – 1[.]117[.]231[.]225:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]134[.]90[.]91:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]224[.]202[.]28:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]227[.]252[.]253:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]23[.]167:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 167[.]172[.]149[.]29:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]73[.]131[.]173:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]194[.]86:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea
North Korea-linked ScarCruft group used a previously undocumented backdoor called Dolphin against targets in South Korea. ESET researchers discovered a previously undocumented backdoor called Dolphin...
Sinatra code execution | CVE-2022-45442
NAME Sinatra code execution Platforms Affected:Sinatra Sinatra 2.0.0 Sinatra Sinatra 2.2.2 Sinatra Sinatra 3.0.0 Sinatra Sinatra 3.0.3Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Lastpass discloses the second security breach this year
LastPass disclosed a new security breach, threat actors had access to its cloud storage using information stolen in the August...
Daily Vulnerability Trends: Thu Dec 01 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-36067vm2 is a sandbox that can run untrusted code with whitelisted Node's...
Malware Analysis – adware – 86c8fbb939f986e0d01e7c175b645be1
Score: 10 MALWARE FAMILY: adwareTAGS:adware, bootkit, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, upxMD5: 86c8fbb939f986e0d01e7c175b645be1SHA1: 362f9ac4249dce17ca231f4ba1e37f24d65b11baANALYSIS DATE: 2022-12-01T02:48:04ZTTPS: T1012, T1082,...
Malware Analysis – – 6934b39e90dddfa77024c63cf37986b0
Score: 6 MALWARE FAMILY: TAGS:MD5: 6934b39e90dddfa77024c63cf37986b0SHA1: c2978367c3f92614a6b0d36399713cf6a9021a0cANALYSIS DATE: 2022-11-29T17:16:48ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – cf71bc7cbcd455475e601421ae0a09f6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, stealerMD5: cf71bc7cbcd455475e601421ae0a09f6SHA1: 7de15815b0885340bb5a45887fb98a8b225b1633ANALYSIS DATE: 2022-12-01T03:45:12ZTTPS: T1012, T1082, T1053, T1060, T1112,...
Malware Analysis – amadey – 76f38fc85049a7037d7b56a72a7ab6cb
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Malware Analysis – amadey – 2aa5a97e05b33840caa2671eb6b0f40f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 2aa5a97e05b33840caa2671eb6b0f40fSHA1: e9294c855702b3eee45423b736f4c1ef1d21503aANALYSIS DATE:...
Malware Analysis – ransomware – 13d8c2f2cdf5f6208c3e999621019304
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 13d8c2f2cdf5f6208c3e999621019304SHA1: fc8930cd264393552727a457efbbea67e60e49e5ANALYSIS DATE: 2022-12-01T02:57:27ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – djvu – 951763ed72bd6ef3dbfb949301dbf918
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, backdoor, ransomware, spyware, stealer, trojanMD5: 951763ed72bd6ef3dbfb949301dbf918SHA1: bfa478fdd1eb243a9ee4c665f5e409878f62f420ANALYSIS DATE: 2022-12-01T05:31:18ZTTPS: T1012, T1120, T1082, T1005, T1081...
Malware Analysis – djvu – d7d034eb4e18d62df6bad28b02b70091
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: d7d034eb4e18d62df6bad28b02b70091SHA1: 0d9031c92147ea4a1f3642f2054506aadef285eaANALYSIS DATE: 2022-12-01T05:24:26ZTTPS: T1222, T1060, T1112, T1012,...
