China-based Fangxiao group behind a long-running phishing campaign
A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers...
BugCrowd Bug Bounty Disclosure: – Impersonation via Broken Link Hijacking on https://sv.hellosign.com – By CoffeeAddict_exe
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Malware Analysis – djvu – 744c37adef44d4e27b5ac46299194566
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:05ad9c5ec543eb32dfa8e77bcd579c06, botnet:1827, botnet:517, botnet:5m, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence,...
Malware Analysis – dcrat – 88cc6e185c2f9a2c8830e6dfd03f481d
Score: 10 MALWARE FAMILY: dcratTAGS:family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, family:vidar, botnet:05ad9c5ec543eb32dfa8e77bcd579c06, botnet:1827, botnet:517, botnet:5m, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer,...
Malware Analysis – djvu – 6f4d157d440bbb29905c20b50c428f83
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 6f4d157d440bbb29905c20b50c428f83SHA1: 8418cf4d252ee2ac8f9fa64fa1c362b9be4ffbc5ANALYSIS DATE: 2022-11-18T03:41:09ZTTPS: T1222, T1053, T1012, T1082,...
Malware Analysis – djvu – 3c3e6245a9f9f3c0dc1943d4821353e2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 3c3e6245a9f9f3c0dc1943d4821353e2SHA1: 3413cc858da15a7aa8e3cc9124a69faa97cc0e74ANALYSIS DATE: 2022-11-18T05:32:31ZTTPS: T1060, T1112, T1082, T1005,...
Malware Analysis – evasion – 9f3522bc02122b36a3f56dd7f10d89a8
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 9f3522bc02122b36a3f56dd7f10d89a8SHA1: d17952baa029eeb4553fa6f70e042e8f2c49a1ecANALYSIS DATE: 2022-11-18T04:28:27ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 47[.]92[.]64[.]196:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]175[.]195:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]49[.]13:2086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]199[.]169[.]193:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 157[.]230[.]218[.]237:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]240[.]118[.]207:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]32[.]11[.]46:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]55[.]231[.]88:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 74[.]63[.]223[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]75:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]128[.]115:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]148[.]201[.]158:7443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]156[.]225[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Impersonation via Broken Link Hijacking on https://sv.hellosign.com – By CoffeeAddict_exe
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Cobalt Stike Beacon Detected – 13[.]113[.]93[.]237:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
