Cobalt Stike Beacon Detected – 35[.]201[.]225[.]182:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Daily Vulnerability Trends: Tue Dec 27 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-2602 No description provided CVE-2022-46689A race condition was addressed with additional validation....
BreachForums Database Leak Alert: Clube do Ingresso
BreachForums - Databreach discussion & leaks forum. NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Malware Analysis – djvu – dd91d13c6df094caa47149165915eec6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: dd91d13c6df094caa47149165915eec6SHA1: 8d1d39ed0ea699368534901a2ce8defb012825d2ANALYSIS DATE: 2022-12-27T03:01:14ZTTPS: T1012, T1005, T1081, T1060, T1112, T1082,...
Malware Analysis – chaos – 9fc6a55ccc1cd41930b17c7dd4474bab
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, ransomwareMD5: 9fc6a55ccc1cd41930b17c7dd4474babSHA1: 2629a5b422be012ebf5bc84c73a7003801e58f8fANALYSIS DATE: 2022-12-27T05:00:05ZTTPS: T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – amadey – ed0de2fe4a3616da46781abc0b8cfe0a
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: ed0de2fe4a3616da46781abc0b8cfe0aSHA1: 42c35c7d44b91fceaf36cb595490423231dc2ebcANALYSIS DATE: 2022-12-27T03:12:05ZTTPS:...
Malware Analysis – amadey – 7ad70bf826cc89d91a9efd9887f661c0
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 7ad70bf826cc89d91a9efd9887f661c0SHA1: 348deecd18ddbd0f99367ff513cc896f0a937a64ANALYSIS DATE: 2022-12-27T04:04:46ZTTPS:...
Malware Analysis – djvu – f09697157456cf5ac1ada0a9acb31ec2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: f09697157456cf5ac1ada0a9acb31ec2SHA1: db280cb85738474a1025921be682cbc3dc76e6b6ANALYSIS DATE: 2022-12-27T03:40:30ZTTPS: T1060, T1112, T1222, T1012, T1082, T1053,...
Malware Analysis – amadey – c85025aecfbdb84e4c077f10306b2963
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: c85025aecfbdb84e4c077f10306b2963SHA1: 24de6b615a6db49c7bbb440277cfccc3d0f17352ANALYSIS DATE: 2022-12-27T05:07:10ZTTPS:...
Malware Analysis – smokeloader – 956a158d5b440bdef05e42a87af04505
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 956a158d5b440bdef05e42a87af04505SHA1: 658fdb2bdc0dfbcaf358f1abe6156654a27f2f71ANALYSIS DATE: 2022-12-27T05:31:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – discovery – d2a2333090ea0b8ba558b5dee97e4c96
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: d2a2333090ea0b8ba558b5dee97e4c96SHA1: 65e6789f9f80a8a31f13e410349ff91bbfe0741dANALYSIS DATE: 2022-12-27T05:01:04ZTTPS: T1046, T1491, T1112, T1053, T1107, T1490, T1082, T1012, T1120 ScoreMeaningExample10Known...
Malware Analysis – djvu – 444ba93b042e74e9cfe4176d666be724
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 444ba93b042e74e9cfe4176d666be724SHA1: 2e3698928f79ad23a6c4ee41c691e889a1bc962cANALYSIS DATE: 2022-12-27T05:45:23ZTTPS: T1012, T1082, T1060, T1112, T1005, T1081,...
Royal Ransomware Victim: Fantasy Springs Resort Casino
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: Robinson Pharma
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Hacker claims to be selling Twitter data of 400 million users
A threat actor claims to be selling public and private data of 400 million Twitter users scraped in 2021 using...
Malware Analysis – smokeloader – 3b61724b7e08dd1c22b349855b3d03f0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3b61724b7e08dd1c22b349855b3d03f0SHA1: 9a95ba1b832913ccb0c0ea35b9e51622e25059beANALYSIS DATE: 2022-12-26T21:51:44ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 19660b46a1d17197b4f9f77e0e8b2c58
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomware, spyware, stealerMD5: 19660b46a1d17197b4f9f77e0e8b2c58SHA1: ca057c6880fe2596193c64150d5f4d4b817be94eANALYSIS DATE: 2022-12-26T21:49:09ZTTPS: T1490, T1082, T1107, T1112, T1005, T1081 ScoreMeaningExample10Known badA...
Cobalt Stike Beacon Detected – 43[.]154[.]27[.]211:888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 3dd689b96e867e4397be876b882d7efd
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 3dd689b96e867e4397be876b882d7efdSHA1: d4984c84258b12ee83cfd2c583a1be5ce6ff449fANALYSIS DATE: 2022-12-26T22:17:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – amadey – 29009bb31db26522fae47b13d38f7d7f
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, botnet:@2023@new, backdoor, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 29009bb31db26522fae47b13d38f7d7fSHA1: 965778ee24becf3e4fcdd78bb4bba90c21cc2dffANALYSIS...
Malware Analysis – smokeloader – c5241954efde6588a6e075e5c65698e5
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: c5241954efde6588a6e075e5c65698e5SHA1: 056efac6b4e94b40128582a1ba277949131b6b67ANALYSIS DATE: 2022-12-26T23:07:18ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 060fc0cb2067f6436d6ac0021a1ee078
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 060fc0cb2067f6436d6ac0021a1ee078SHA1: 887c9754f6bd578af346a125eba14ee09beb09c7ANALYSIS DATE: 2022-12-26T22:30:09ZTTPS: T1060, T1112, T1222, T1053, T1005, T1081,...
Cobalt Stike Beacon Detected – 107[.]148[.]53[.]252:801
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]200[.]118:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
