Cobalt Stike Beacon Detected – 5[.]188[.]86[.]194:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]89[.]196[.]245:6789
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 9d06217fba3f3141cb7fc1a813e3dff8
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 9d06217fba3f3141cb7fc1a813e3dff8SHA1: 36bbc02a0dedc4d1b90186b62ac30d8d331b6a96ANALYSIS DATE: 2023-03-09T22:25:25ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – smokeloader – 4eb141e24bae15180d68bc22e040954a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 4eb141e24bae15180d68bc22e040954aSHA1: 7621310b600b39c7e9700fbca56c15938c80e589ANALYSIS DATE: 2023-03-09T22:33:01ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 88108be37dd6fe70039ce07fe7d4084d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 88108be37dd6fe70039ce07fe7d4084dSHA1: ef2acad1f1bcd0ec59859ec29a77d363f22269a2ANALYSIS DATE: 2023-03-09T21:27:35ZTTPS: T1222, T1082, T1005, T1081,...
Malware Analysis – ransomware – bc4e211d38d2d1f81c84b0aad4b73e72
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: bc4e211d38d2d1f81c84b0aad4b73e72SHA1: da1ecd02618b67cf061e3992c42144197762331bANALYSIS DATE: 2023-03-09T22:01:50ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 59c6512670c56bced3f3993bdd800d4a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 59c6512670c56bced3f3993bdd800d4aSHA1: 5ac42a6365b594fca5210b37b64525cf6764832bANALYSIS DATE: 2023-03-09T23:21:08ZTTPS: T1053, T1005, T1081, T1082,...
Malware Analysis – royal – 01492156ce8b4034c5b1027130f4cf4e
Score: 10 MALWARE FAMILY: royalTAGS:family:royal, ransomwareMD5: 01492156ce8b4034c5b1027130f4cf4eSHA1: 6b0deb67a178fe20e81691133b257df3bafa3006ANALYSIS DATE: 2023-03-09T23:07:03ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – royal – df0b88dafe7a65295f99e69a67db9e1b
Score: 10 MALWARE FAMILY: royalTAGS:family:royal, ransomwareMD5: df0b88dafe7a65295f99e69a67db9e1bSHA1: db3163a09eb33ff4370ad162a05f4b2584a20456ANALYSIS DATE: 2023-03-09T23:09:03ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Malware Analysis – evasion – ba804eaa0d768e204dfc2acb4bf9ceba
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomware, trojanMD5: ba804eaa0d768e204dfc2acb4bf9cebaSHA1: 0738f2cc2750d7251bbe1919eb354d9432b052b1ANALYSIS DATE: 2023-03-09T23:22:57ZTTPS: T1107, T1490, T1082, T1031, T1562, T1489, T1089, T1112, T1491...
Malware Analysis – djvu – 333a83fe4e74d20da20c63685a54129d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:pseudomanuscrypt, family:smokeloader, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, botnet:pub1, botnet:sprg, backdoor, clipper, discovery, loader, persistence, ransomware, stealer, trojanMD5:...
Malware Analysis – djvu – 740febd82702ec1d6ba51fac9c513d35
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 740febd82702ec1d6ba51fac9c513d35SHA1: de088f293d0207e02116a93d8b5952891410ee14ANALYSIS DATE: 2023-03-09T23:42:20ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – djvu – bb1cdee0eeada031ab821574a69bcea9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: bb1cdee0eeada031ab821574a69bcea9SHA1: d3c81062777dcc8b1a7ad4418bbe78fce70a0adfANALYSIS DATE: 2023-03-09T23:41:44ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 21376bb731ac7d0403d50a0123b8f744
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 21376bb731ac7d0403d50a0123b8f744SHA1: a141c674796134273f41aa457f10f17fbe45b95cANALYSIS DATE: 2023-03-09T23:23:56ZTTPS: T1082, T1053, T1005, T1081,...
LockBit 3.0 Ransomware Victim: delawarelife[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – djvu – 1ee6258a95eede1f094f8df190bdd6e0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 1ee6258a95eede1f094f8df190bdd6e0SHA1: d7d4ad0ec8fc037901415a32259d78356f63f858ANALYSIS DATE: 2023-03-09T14:58:42ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – djvu – 182fe34b1f0462a9e1cd16da7e407343
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 182fe34b1f0462a9e1cd16da7e407343SHA1: 53c3f029d3ff7f58ca9954f749edb6e44114a02fANALYSIS DATE: 2023-03-09T15:25:52ZTTPS: T1060, T1112, T1082, T1053,...
Malware Analysis – djvu – c7cd0cfab160d2c50eca232bbebb9ec0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: c7cd0cfab160d2c50eca232bbebb9ec0SHA1: ced9ebf65abc14747b31118182acc859b537c3beANALYSIS DATE: 2023-03-09T15:19:05ZTTPS: T1130, T1112, T1005, T1081,...
Malware Analysis – smokeloader – f30433ddb4f9db7afc0d5a61d6730e4a
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: f30433ddb4f9db7afc0d5a61d6730e4aSHA1: 74ab86a37e6f164e2d9c07c248f7bb07111b339fANALYSIS DATE: 2023-03-09T15:22:05ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 3770d4e8c8b7e2a4c37a0ba09f28e2be
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, discovery, persistence, ransomware, spyware, stealerMD5: 3770d4e8c8b7e2a4c37a0ba09f28e2beSHA1: 0495a7a5dbbe35a232f1bc7ed4d5da214bf2bf35ANALYSIS DATE: 2023-03-09T15:27:04ZTTPS: T1130, T1112, T1222, T1053,...
HackerOne Bug Bounty Disclosure: improper-handling-of-null-bytes-in-github-actions-runner-allows-an-attacker-to-set-arbitrary-environment-variablesbyryotak
Programme HackerOne GitHub GitHub Submitted by ryotak ryotak Report Improper handling of null bytes in GitHub Actions Runner allows an...
Malware Analysis – amadey – 8d990e00f9718a8d43195a38865a1462
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:laplas, family:pseudomanuscrypt, family:smokeloader, family:vidar, botnet:694f12963bedb0c6040fb3c74aac71e5, botnet:pub1, botnet:sprg, backdoor, clipper, discovery, evasion, loader, persistence, ransomware,...
Malware Analysis – ransomware – f261a5e674a442842c7e581122256fb3
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f261a5e674a442842c7e581122256fb3SHA1: e9e92b942c8f6092ae55b3e2b98e1a3a9667695aANALYSIS DATE: 2023-03-09T16:34:58ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 928fd385b000799b395957768079f032
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 928fd385b000799b395957768079f032SHA1: 1f902ca013cad6e4e1482ba7b08b8c50bf8ec40aANALYSIS DATE: 2023-03-09T16:09:20ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
