Cobalt Stike Beacon Detected – 117[.]50[.]175[.]21:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Daily Vulnerability Trends: Thu Dec 29 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-46689A race condition was addressed with additional validation. This issue is fixed...
LockBit 3.0 Ransomware Victim: portodelisboa[.]pt
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – discovery – 30ed48ae1f68c35a117f0af427d433c0
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 30ed48ae1f68c35a117f0af427d433c0SHA1: 155988ac3dceda0405dd8cd649b2e3daeffb84f8ANALYSIS DATE: 2022-12-29T03:56:33ZTTPS: T1082, T1059, T1057, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – 830725fdb9974c80c884bd208c9a9e61
Score: 7 MALWARE FAMILY: TAGS:MD5: 830725fdb9974c80c884bd208c9a9e61SHA1: 155fa61187f36230905d177632f721fffe01e4b8ANALYSIS DATE: 2022-12-29T03:11:07ZTTPS: T1082, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – discovery – 9252c0c41b9c0684afa49736a63e7402
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 9252c0c41b9c0684afa49736a63e7402SHA1: f4ad396525630d89e3fefe5b637a9813bcb0ad67ANALYSIS DATE: 2022-12-29T02:45:11ZTTPS: T1060, T1012, T1112, T1082, T1053,...
Malware Analysis – discovery – c3889e63fa8ef5cfe0ab89c64da416c9
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomware, upxMD5: c3889e63fa8ef5cfe0ab89c64da416c9SHA1: 9a120cd99b8ca1d135a45e6e65cc56d26b08db68ANALYSIS DATE: 2022-12-29T03:57:18ZTTPS: T1082, T1060, T1112, T1031, T1562, T1489, T1057,...
Malware Analysis – djvu – c2cae1eb5619841b7025af4061823a04
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: c2cae1eb5619841b7025af4061823a04SHA1: 6ff42450df25bf6310e9427bba5b4c2d641a49e0ANALYSIS DATE: 2022-12-29T04:41:00ZTTPS: T1060, T1112, T1005, T1081, T1012, T1222,...
Malware Analysis – djvu – e3d1bc57aabd18bd6bc48c91b0b68226
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: e3d1bc57aabd18bd6bc48c91b0b68226SHA1: cb049a902f92c05e36156886d3d06e5895c31e47ANALYSIS DATE: 2022-12-29T05:47:21ZTTPS: T1012, T1082, T1053, T1005, T1081, T1060,...
Malware Analysis – blackcat – f46a2fb7b8cd1e92ce8b136db5455252
Score: 10 MALWARE FAMILY: blackcatTAGS:family:blackcat, ransomwareMD5: f46a2fb7b8cd1e92ce8b136db5455252SHA1: f23a53c58b284dc84c5ea1822e52284e5a2d7991ANALYSIS DATE: 2022-12-29T04:41:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Cobalt Stike Beacon Detected – 62[.]204[.]41[.]155:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]4[.]97[.]5:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]42[.]212[.]94:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]149[.]185[.]189:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Improving Software Supply Chain Security
Explore use cases and mitigation strategies to improve software supply chain security and reduce cyber risk. If you like the...
US-CERT Bulletin (SB22-361):Vulnerability Summary for the Week of December 19, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Royal ransomware claims attack on Intrado telecom provider
The Royal Ransomware gang claimed responsibility for a cyber attack against telecommunications company Intrado on Tuesday. While Intrado is yet...
Thousands of Citrix servers vulnerable to patched critical flaws
Thousands of Citrix ADC and Gateway deployments remain vulnerable to two critical-severity security issues that the vendor fixed in recent months....
Hackers abuse Google Ads to spread malware in legit software
Malware operators have been increasingly abusing the Google Ads platform to spread malware to unsuspecting users searching for popular software products....
BlackCat/ALPHV Ransomware Victim: ELOTECH – HACKED AND MORE THEN 100 GB DATA LEAKED!
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – blackmatter – 8e09e25c6dd51a06b9383457a5ec4b1e
Score: 10 MALWARE FAMILY: blackmatterTAGS:family:blackmatter, ransomwareMD5: 8e09e25c6dd51a06b9383457a5ec4b1eSHA1: bb04c8d83f8946c3e03386269b290fb338c07daeANALYSIS DATE: 2022-12-28T15:05:05ZTTPS: T1130, T1112, T1491 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – blackmatter – 76c242bdf600d151aceb5c09b81ed447
Score: 10 MALWARE FAMILY: blackmatterTAGS:family:blackmatter, ransomware, upxMD5: 76c242bdf600d151aceb5c09b81ed447SHA1: f45d598dc49acc4271d38895363fe3cf1d390a54ANALYSIS DATE: 2022-12-28T15:04:03ZTTPS: T1130, T1112, T1491 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 8193672e83a62819c146f990265ed0a3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 8193672e83a62819c146f990265ed0a3SHA1: d6d3aa3732c2914296bb5f73e05174d9c7dd65c7ANALYSIS DATE: 2022-12-28T15:10:18ZTTPS: T1060, T1112, T1222, T1082, T1053, T1005,...
Malware Analysis – blackmatter – 62e9edb7e44dc3eecd59ad14f9324dff
Score: 10 MALWARE FAMILY: blackmatterTAGS:family:blackmatter, ransomwareMD5: 62e9edb7e44dc3eecd59ad14f9324dffSHA1: 537f2f42c2aeef0134c2a32a84733796909f0f3eANALYSIS DATE: 2022-12-28T15:06:05ZTTPS: T1491, T1112, T1130 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
