RedPacket Security - InfoSec News & Tutorials

Malware Analysis – djvu – c2be1c6466bcc157ee79092501569862

March 14, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: c2be1c6466bcc157ee79092501569862SHA1: 3c1ef032666280d248672ad7d2f8d54872ed2c04ANALYSIS DATE: 2023-03-14T10:44:29ZTTPS: T1012, T1082, T1222, T1053,...

Malware Analysis – djvu – 36158f02cd9474c030ecf34239f79a77

March 14, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 36158f02cd9474c030ecf34239f79a77SHA1: cd57ca6622ab79b621bd6e4d88d0f36f41ed2b90ANALYSIS DATE: 2023-03-14T09:32:51ZTTPS: T1222, T1012, T1060, T1112,...

Malware Analysis – amadey – 028045a3f7ee017f13bcb2da03e59f60

March 14, 2023

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, botnet:pub1, backdoor, discovery, ransomware, trojanMD5: 028045a3f7ee017f13bcb2da03e59f60SHA1: 4e3d4a183abc852b5bb3381b0898c53eca8d328bANALYSIS DATE: 2023-03-14T11:02:13ZTTPS: T1012, T1120, T1082, T1222,...

Malware Analysis – amadey – 2e02bbad145e7411f7095a600378dc8e

March 14, 2023

Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:redline, family:smokeloader, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, botnet:pub1, backdoor, clipper, discovery, infostealer, persistence, ransomware, stealer, trojanMD5:...

Malware Analysis – djvu – 25a776b0fe44c7045b72ad481ac3d6db

March 14, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 25a776b0fe44c7045b72ad481ac3d6dbSHA1: 70acefb9366fe5a4b69614fd809cd7f850f5993bANALYSIS DATE: 2023-03-14T11:04:31ZTTPS: T1060, T1112, T1012, T1082,...

Malware Analysis – djvu – b686c06e9f2a0da8b243e25fa803ed59

March 14, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: b686c06e9f2a0da8b243e25fa803ed59SHA1: 6cc657a5619b4f5770a65a8786fc62f65335f6feANALYSIS DATE: 2023-03-14T10:51:33ZTTPS: T1005, T1081, T1053, T1082,...

Malware Analysis – evasion – 9adec3dda8427bf36fb83f6c384da2c5

March 14, 2023

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9adec3dda8427bf36fb83f6c384da2c5SHA1: 83ddb0e215863a669f3d52001ecc022e96647b6aANALYSIS DATE: 2023-03-14T11:39:49ZTTPS: T1070 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – djvu – 6bed34f9ba8ee3d96ba1278c4e731164

March 14, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 6bed34f9ba8ee3d96ba1278c4e731164SHA1: d46f24f3fd2646122c48c228b23f46785e97fd9dANALYSIS DATE: 2023-03-14T11:05:39ZTTPS: T1005, T1081, T1060, T1112,...

Malware Analysis – evasion – da0bc578134b0871ce7700c9072d2797

March 14, 2023

Score: 9 MALWARE FAMILY: evasionTAGS:evasion, ransomware, upxMD5: da0bc578134b0871ce7700c9072d2797SHA1: 6077aa9fbba54dc04c5c60f58fe31e119484b7c6ANALYSIS DATE: 2023-03-14T11:33:37ZTTPS: T1070 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

Malware Analysis – djvu – a6446754a3635217c8c76b9bc06105bc

March 14, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, ransomwareMD5: a6446754a3635217c8c76b9bc06105bcSHA1: febcca0e8db7199a52030537c94ba665e5cde952ANALYSIS DATE: 2023-03-14T11:05:14ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...

NETGEAR devices unspecified |

March 14, 2023

NAME__________NETGEAR devices unspecifiedPlatforms Affected:NETGEAR RAX30Risk Level:7.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified security vulnerability in NETGEAR devices could allow a remote authenticated attacker to...

Metersphere file disclosure | CVE-2023-25814

March 14, 2023

NAME__________Metersphere file disclosurePlatforms Affected:metersphere metersphere 2.6.2Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Metersphere could allow a remote authenticated attacker to obtain sensitive information, caused...

NETGEAR Nighthawk WiFi6 Router security bypass | CVE-2023-27850

March 14, 2023

NAME__________NETGEAR Nighthawk WiFi6 Router security bypassPlatforms Affected:NETGEAR Nighthawk WiFi6 Router 1.0.10Risk Level:7.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________NETGEAR Nighthawk WiFi6 Router could allow a...

Best POS Management System SQL injection | CVE-2023-27202

March 14, 2023

NAME__________Best POS Management System SQL injectionPlatforms Affected:SourceCodester Best POS Management SystemRisk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Best POS Management System is vulnerable to...

SEIKO EPSON printers/network interface Web Config cross-site scripting | CVE-2023-27520

March 14, 2023

NAME__________SEIKO EPSON printers/network interface Web Config cross-site scriptingPlatforms Affected:SEIKO EPSON Web ConfigRisk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SEIKO EPSON printers/network interface Web Config...

metersphere information disclosure | CVE-2023-25573

March 14, 2023

NAME__________metersphere information disclosurePlatforms Affected:metersphere metersphere 1.20.19 lts metersphere metersphere 2.6.2Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________metersphere could allow a remote attacker to obtain...

Best POS Management System SQL injection | CVE-2023-27203

March 14, 2023

RapidLoad Power-Up for Autoptimize Plugin for WordPress cross-site request forgery | CVE-2023-1343

March 14, 2023

NAME__________RapidLoad Power-Up for Autoptimize Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress RapidLoad Power-Up for Autoptimize Plugin for WordPress 1.7.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain...

Best POS Management System SQL injection | CVE-2023-27204

March 14, 2023

NETGEAR devices unspecified |

March 14, 2023

NAME__________NETGEAR devices unspecifiedPlatforms Affected:NETGEAR RAX30Risk Level:7.5Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified security vulnerability in NETGEAR devices could allow a remote attacker to cause...

Flarum directory traversal | CVE-2023-27577

March 14, 2023

NAME__________Flarum directory traversalPlatforms Affected:Flarum Flarum 1.6.3Risk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Flarum could allow a remote authenticated attacker to traverse directories on the...

HashiCorp Vault and Vault Enterprise denial of service | CVE-2023-24999

March 14, 2023

NAME__________HashiCorp Vault and Vault Enterprise denial of servicePlatforms Affected:HashiCorp Vault 1.12.3 HashiCorp Vault Enterprise 1.12.3Risk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________HashiCorp Vault...

NETGEAR devices unspecified |

March 14, 2023

NAME__________NETGEAR devices unspecifiedPlatforms Affected:NETGEAR RAX30Risk Level:0Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified security vulnerability in NETGEAR devices could allow a remote attacker to cause...

SEIKO EPSON printers/network interface Web Config cross-site request forgery | CVE-2023-23572

March 14, 2023

NAME__________SEIKO EPSON printers/network interface Web Config cross-site request forgeryPlatforms Affected:SEIKO EPSON Web ConfigRisk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SEIKO EPSON printers/network interface Web...

Main Story

Insider Threat Management Unlocked: A Practical Guide for 2025

Editor’s Picks

Trending Story

Featured Story

You may have missed