Score: 8 MALWARE FAMILY: upxTAGS:upxMD5: d9e180e9bc352d84a932a83d7c5e2e81SHA1: 937d13557efb15faea5ca5ab04ba9a23d1461b8fANALYSIS DATE: 2022-12-22T10:24:13ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a7a9d22a53682de59e66e3b00e253974SHA1: bba5a75a1d4a92b91ae27de131dfa04e49ee9d98ANALYSIS DATE: 2022-12-22T09:31:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Score: 8 MALWARE FAMILY: persistenceTAGS:persistence, ransomware, upxMD5: c6925c9e1c8afc7dc6b0fdcce9e2d525SHA1: eec111ed02645456f2a4acb1eb4e74fa5ad5e614ANALYSIS DATE: 2022-12-22T09:22:30ZTTPS: T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 6d31cc9b3e37871d35eb45c8a5103f92SHA1: 1fcc7d965db0f4585604be00cad66d8c22d5978fANALYSIS DATE: 2022-12-22T10:11:29ZTTPS: T1222, T1053, T1012, T1082, T1060, T1112,...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 88d7dc05b7794c43d3139459c59887c3SHA1: 22394c449abe2646eb9ad38ad21c535b24c88049ANALYSIS DATE: 2022-12-22T10:33:04ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, botnet:mario23_10, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 2b79f0afb2dc42c780798c703991a6b7SHA1: 98c46412d503e36d2178066a3ce2b24f49c280a1ANALYSIS...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 43d1e65899d0b271d1fba91b5790903cSHA1: 76f798556f63316fb401b44a83209da04c7f76ffANALYSIS DATE: 2022-12-22T10:45:50ZTTPS: T1005, T1081, T1012, T1060, T1112, T1082,...
Score: 1 MALWARE FAMILY: TAGS:MD5: 26140638e7b26263ccb6060488bd66dbSHA1: e9ffb621ae7b601c3a0e567bd8fc0c97bed71497ANALYSIS DATE: 2022-12-22T11:15:41ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2020-6418Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a...
The Raspberry Robin malware is now trying its hand at some trickery by dropping a fake payload to confuse researchers...
The FBI warns that threat actors are using search engine advertisements to promote websites distributing ransomware or stealing login credentials...
An Android banking malware named 'Godfather' has been targeting users in 16 countries, attempting to steal account credentials for over...
Okta, a leading provider of authentication services and Identity and Access Management (IAM) solutions, says that its private GitHub repositories were...
A massive advertising fraud campaign using Google Ads and 'popunders' on adult sites is estimated to have generated millions of...
A compromised Ukrainian Ministry of Defense email account was found sending phishing emails and instant messages to users of the...
Threat actors have published a malicious Python package on PyPI, named 'SentinelOne,' that pretends to be the legitimate SDK client...
Microsoft warned today that it will permanently turn off Exchange Online basic authentication starting early January 2023 to improve security....
Restaurant customer management platform SevenRooms has confirmed it suffered a data breach after a threat actor began selling stolen data on...
Corsair has confirmed that a bug in the firmware of K100 keyboards, and not malware, is behind previously entered text...
Play ransomware threat actors are using a new exploit chain that bypasses ProxyNotShell URL rewrite mitigations to gain remote code...
The PyPi python package repository is being bombarded by a wave of information-stealing malware hiding inside malicious packages uploaded to...
