Cl0p Ransomware Victim: INRIX[.]COM
Cl0p Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
LockBit 3.0 Ransomware Victim: maximumind[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: plasticproductsco[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – locky – 0d0823d9a5d000b80e27090754f59ee5
Score: 10 MALWARE FAMILY: lockyTAGS:family:locky, ransomwareMD5: 0d0823d9a5d000b80e27090754f59ee5SHA1: b1f495b707ffaf53188c13f19a487dd94e7a0735ANALYSIS DATE: 2023-03-13T15:08:54ZTTPS: T1112, T1012, T1082, T1491 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
HackerOne Bug Bounty Disclosure: traffic-amplification-attack-via-discovery-protocolbyluk-matczak
Programme HackerOne IOVLabs IOVLabs Submitted by luk-matczak luk-matczak Report Traffic amplification attack via discovery protocol Full Report A considerable amount...
Malware Analysis – ransomware – 7b2197365c92c5cfd19a56f5fdddc185
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 7b2197365c92c5cfd19a56f5fdddc185SHA1: d8f505ff1205ed79d5d958c9928c9795114ef68eANALYSIS DATE: 2023-03-13T16:27:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 7bb50bb1d3ffe6e3f720bd99b3936bad
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 7bb50bb1d3ffe6e3f720bd99b3936badSHA1: 3c405add3d14af0d86c00f3492a8682348d0ee3cANALYSIS DATE: 2023-03-13T16:24:23ZTTPS: T1222, T1005, T1081, T1060,...
Malware Analysis – djvu – c52e18372586916023dc2d507088da9c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: c52e18372586916023dc2d507088da9cSHA1: 025758f4f9c7088ba8d74fa54fabda590b50c9bdANALYSIS DATE: 2023-03-13T15:35:07ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – amadey – cb38b3968861698ea7d7463d296e859f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, botnet:pub1, backdoor, discovery, ransomware, trojanMD5: cb38b3968861698ea7d7463d296e859fSHA1: 8255a7b71f1d9ce631060a26ed9b9bf82ff493baANALYSIS DATE: 2023-03-13T15:30:15ZTTPS: T1012, T1222, T1053, T1120,...
Malware Analysis – djvu – 89b3f1699a62b906f571a89e1fe12436
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 89b3f1699a62b906f571a89e1fe12436SHA1: 8bf0fcfd778c25606b0106c749efc3102438365bANALYSIS DATE: 2023-03-13T16:36:25ZTTPS: T1222, T1012, T1082, T1005,...
Malware Analysis – amadey – b611d2cbc5d590e18ae80d1a65a659f7
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:pub1, backdoor, clipper, discovery, ransomware, stealer, trojanMD5: b611d2cbc5d590e18ae80d1a65a659f7SHA1: 0e5384c2f5dd717f94f8c7fbfd403ddd0ba705c0ANALYSIS DATE: 2023-03-13T16:57:34ZTTPS:...
Malware Analysis – djvu – e990a4a35995f68c5691ac7cfaec1cdf
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: e990a4a35995f68c5691ac7cfaec1cdfSHA1: cf298f572e5f843d526a91bec61eb1f378afadfeANALYSIS DATE: 2023-03-13T17:01:50ZTTPS: T1082, T1005, T1081, T1222,...
Malware Analysis – evasion – 1a8e74c4bb9a2c5b38b4412a6b484737
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojan, upxMD5: 1a8e74c4bb9a2c5b38b4412a6b484737SHA1: c01eb730609125dc55641d1aa377d890941b9e83ANALYSIS DATE: 2023-03-13T16:31:41ZTTPS: T1112, T1491, T1088, T1089, T1060 ScoreMeaningExample10Known badA...
Malware Analysis – amadey – a4c3f82e949d747d8750f1e47263b685
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:pseudomanuscrypt, family:smokeloader, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, botnet:pub1, backdoor, clipper, discovery, loader, persistence, ransomware, stealer, trojanMD5:...
Malware Analysis – djvu – 0faa2a48ab23d34235328bf0dd01bd95
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, discovery, persistence, ransomware, spyware, stealerMD5: 0faa2a48ab23d34235328bf0dd01bd95SHA1: 75fb2972b2634e02a9bc1be897f2975f5beb7006ANALYSIS DATE: 2023-03-13T17:03:00ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – persistence – b405c79a91078ae7eb67fbec7a043c33
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, upxMD5: b405c79a91078ae7eb67fbec7a043c33SHA1: bf8beb1476157f34d9453e7a997eabfbfe2ce635ANALYSIS DATE: 2023-03-13T17:38:47ZTTPS: T1082, T1012, T1120, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – amadey – 43c7e504e3546755dcf7a9f634c3ac24
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:pseudomanuscrypt, family:smokeloader, family:vidar, botnet:d6ef050131e7d5a1d595c51613328971, botnet:pub1, backdoor, clipper, discovery, loader, persistence, ransomware, stealer, trojanMD5:...
X-force – IBM Security Utilitary Library In Python. Search And Query All Sources: Threat_Activities And Groups, Malware_Analysis, Industries
IBM Security X-FORCE Exchange library in Python 3. Search: threat_activities, threat_groups, malware_analysis, collector and industries.Install pip3 install XForce Use Using you API_KEY...
MacOSThreatTrack – Bash Tool Used For Proactive Detection Of Malicious Activity On macOS Systems
The tool is being tested in the beta phase, and it only gathers MacOS system information at this time. The...
Graphicator – A GraphQL Enumeration And Extraction Tool
Graphicator is a GraphQL "scraper" / extractor. The tool iterates over the introspection document returned by the targeted GraphQL endpoint,...
Thunderstorm – Modular Framework To Exploit UPS Devices
Thunderstorm is a modular framework to exploit UPS devices. For now, only the CS-141 and NetMan 204 exploits will be...
APKHunt – Comprehensive Static Code Analysis Tool For Android Apps That Is Based On The OWASP MASVS Framework
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although...
DataSurgeon – Quickly Extracts IP’s, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers And More From Text
DataSurgeon (ds) is a versatile tool designed for incident response, penetration testing, and CTF challenges. It allows for the extraction...
IpGeo – Tool To Extract IP Addresses From Captured Network Traffic File
IpGeo is a python tool to extract IP addresses from captured network traffic file (pcap/pcapng) and generate csv report containing...
