Cobalt Stike Beacon Detected – 96[.]126[.]126[.]84:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]32[.]145[.]237:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – f5776eb12290fcd3f2288ae4d877d090
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f5776eb12290fcd3f2288ae4d877d090SHA1: 9516cc9ff311ccec53653acb990e98356da2c001ANALYSIS DATE: 2023-01-09T09:11:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – dcrat – 8bb59c5b3a4699c59c0acda7385af9ea
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, collection, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 8bb59c5b3a4699c59c0acda7385af9eaSHA1:...
Malware Analysis – djvu – 9b1131057924c3a1841acbe107ee086e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 9b1131057924c3a1841acbe107ee086eSHA1: 80539f9485c9e29733ca57a24b2c9b37fb4ac0acANALYSIS DATE: 2023-01-09T09:23:07ZTTPS: T1060, T1112, T1222, T1053,...
Malware Analysis – banker – 6dce96266bfb1e4db3657021bdaea6a0
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 6dce96266bfb1e4db3657021bdaea6a0SHA1: 77781f078a3727c557b2a8800f2593d67d7aa529ANALYSIS DATE: 2023-01-09T10:34:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – djvu – 5f979a8a2446ecc43b10dba94238edcc
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 5f979a8a2446ecc43b10dba94238edccSHA1: 407e927137549a9da50b58089be640682afe1474ANALYSIS DATE: 2023-01-09T10:32:53ZTTPS: T1012,...
Malware Analysis – – 6c1797c5a0b5d5d07fc74f474c9498d3
Score: 1 MALWARE FAMILY: TAGS:MD5: 6c1797c5a0b5d5d07fc74f474c9498d3SHA1: 69a884bbee18c8ebee0c329c14f58728c51c58f2ANALYSIS DATE: 2023-01-09T10:44:13ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – e7278549bc6c6dac549f7d64530875cb
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: e7278549bc6c6dac549f7d64530875cbSHA1: 01df4b33ff01685105c10cac2d83041fda547194ANALYSIS DATE: 2023-01-09T10:20:18ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – aurora – 23646c9325387fa729732c7b88c72ad7
Score: 10 MALWARE FAMILY: auroraTAGS:family:aurora, family:dcrat, family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5: 23646c9325387fa729732c7b88c72ad7SHA1:...
Malware Analysis – djvu – a361a0f3a8220185911ccf9aca4aaad4
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: a361a0f3a8220185911ccf9aca4aaad4SHA1: 322767f2549261cce0ccfd1a752b2bac9941ac4dANALYSIS DATE: 2023-01-09T10:48:37ZTTPS: T1222, T1005, T1081, T1012,...
Malware Analysis – evasion – 99e3c49edfa0934419a87adb9a1d99dd
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 99e3c49edfa0934419a87adb9a1d99ddSHA1: 4c82fbdda744ce7ccf91e7f07b4ac2efffa68f19ANALYSIS DATE: 2023-01-09T11:08:36ZTTPS: T1060, T1112, T1491, T1158 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – evasion – ad4c99e6d61c62723324f02e6cfee6d3
Score: 8 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: ad4c99e6d61c62723324f02e6cfee6d3SHA1: 189168db2318d45b5a35d2f1410a4dfdcb71c61aANALYSIS DATE: 2023-01-09T11:10:12ZTTPS: T1491, T1112, T1060, T1158 ScoreMeaningExample10Known badA malware family was...
Daily Vulnerability Trends: Mon Jan 09 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-37958SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.CVE-2022-46689A race condition was...
Malware Analysis – djvu – bd1436b16af05a69f8b8d87c813af376
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: bd1436b16af05a69f8b8d87c813af376SHA1: 9c84a2b8f40cc92e0549877983f792efff96ee78ANALYSIS DATE: 2023-01-09T04:11:16ZTTPS: T1060, T1112, T1222, T1005,...
Malware Analysis – dcrat – 9e4e9a0d63d345bd24e6a974f751bd6b
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:19, botnet:@2023@new, backdoor, discovery, infostealer, persistence, ransomware, rat, spyware, stealer, trojanMD5:...
Malware Analysis – djvu – c1d43aa7d4455f59a66ff383f5736931
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:smokeloader, family:vidar, botnet:19, backdoor, discovery, persistence, ransomware, spyware, stealer, trojanMD5: c1d43aa7d4455f59a66ff383f5736931SHA1: a654ea0183d33c617cc58123a66b345a6b6bf62aANALYSIS DATE: 2023-01-09T04:50:28ZTTPS: T1012,...
Malware Analysis – djvu – ca487f76d723527db20f804d50c39eaa
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: ca487f76d723527db20f804d50c39eaaSHA1: 3fd3ba30bc77020a5e3bebf8c9d34a0834ad54b7ANALYSIS DATE: 2023-01-09T05:44:15ZTTPS: T1005, T1081, T1012, T1222,...
Malware Analysis – smokeloader – 0d8206f8fbd4cad4c14fbc48e1ecec79
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0d8206f8fbd4cad4c14fbc48e1ecec79SHA1: 446cf441f1280e16a10a6a7cc48e59aec15d98b3ANALYSIS DATE: 2023-01-09T05:16:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – smokeloader – 0af68ab2edffc49632fd170dc3c97127
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 0af68ab2edffc49632fd170dc3c97127SHA1: fd585f3813b61a70a5f102c2208b212b2f324873ANALYSIS DATE: 2023-01-09T04:26:02ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
DoorDash – 367,476 breached accounts
HIBP In August 2022, the food ordering and delivery service DoorDash disclosed a data breach that impacted a portion of...
Cobalt Stike Beacon Detected – 107[.]189[.]1[.]15:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BlackCat/ALPHV Ransomware Victim: Koo Wee Rup Secondary College
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Cobalt Stike Beacon Detected – 107[.]148[.]130[.]141:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
