Cobalt Stike Beacon Detected – 195[.]189[.]96[.]208:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]60[.]165[.]221:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]60[.]150[.]151:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – evasion – d079c0fa48fce0e934ba91eb9aaa1371
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomware, trojanMD5: d079c0fa48fce0e934ba91eb9aaa1371SHA1: b83fbd591c980e6f76b417f12cbbe98757156483ANALYSIS DATE: 2022-12-19T09:27:11ZTTPS: T1107, T1490, T1031, T1082, T1060, T1112, T1053, T1089,...
Malware Analysis – phobos – c103ec06780900e31e8f2b7eef87367c
Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: c103ec06780900e31e8f2b7eef87367cSHA1: b154ab6d401c53e43e7fafa757e96cf0a86a044fANALYSIS DATE: 2022-12-19T09:27:11ZTTPS: T1490, T1059, T1107, T1005, T1081, T1112,...
Malware Analysis – chaos – be7f1f1945fb7f3b6fa92e38cc466619
Score: 10 MALWARE FAMILY: chaosTAGS:family:chaos, evasion, persistence, ransomware, spyware, stealerMD5: be7f1f1945fb7f3b6fa92e38cc466619SHA1: 7cffcbbbadaebd23ffecba0d40dc0290ba528603ANALYSIS DATE: 2022-12-19T09:27:10ZTTPS: T1490, T1059, T1107, T1491, T1112, T1082,...
Malware Analysis – phobos – 578244d3c1afbe8009f04bbc9eb54076
Score: 10 MALWARE FAMILY: phobosTAGS:family:phobos, evasion, persistence, ransomware, spyware, stealerMD5: 578244d3c1afbe8009f04bbc9eb54076SHA1: 83c1841f67d81d90aec1217766721bbb6856973eANALYSIS DATE: 2022-12-19T09:27:11ZTTPS: T1490, T1059, T1107, T1112, T1060, T1082,...
Cobalt Stike Beacon Detected – 147[.]182[.]177[.]163:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]139[.]139[.]56:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 173[.]82[.]206[.]184:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]43[.]12[.]109:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – c4c212e00c54bd667019ed5709b8724d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: c4c212e00c54bd667019ed5709b8724dSHA1: 22974e6a95ec64e983c78bba8c3850586aa34619ANALYSIS DATE: 2022-12-19T11:05:05ZTTPS: T1012, T1082, T1053, T1060, T1112, T1222,...
Malware Analysis – evasion – cb1ba70812eda56152bd1e2186acabe9
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: cb1ba70812eda56152bd1e2186acabe9SHA1: 0416d3296a3e4ad7b3746d01f79c13f1166a6a3fANALYSIS DATE: 2022-12-19T09:27:11ZTTPS: T1107, T1490, T1082, T1112, T1031, T1562, T1489, T1012, T1120,...
Malware Analysis – djvu – 3d9531b21a5f0bbe636ebf64b03a31ef
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 3d9531b21a5f0bbe636ebf64b03a31efSHA1: 52fc6c5274ef4d649873f075eb9d0b9d7af7772eANALYSIS DATE: 2022-12-19T10:27:33ZTTPS: T1082, T1053, T1005, T1081, T1012, T1060,...
Malware Analysis – ransomware – 432ef25107f4c29775ecc469699d02fb
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 432ef25107f4c29775ecc469699d02fbSHA1: c74dc4765adcf729367068b4570ca3ea1bba7e0dANALYSIS DATE: 2022-12-19T10:39:33ZTTPS: T1107, T1490 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Glupteba botnet is back after Google disrupted it in December 2021
The Glupteba botnet is back, researchers reported a surge in infection worldwide after Google disrupted its operation in 2021. In...
Daily Vulnerability Trends: Mon Dec 19 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-4543 No description provided CVE-2022-37958SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure...
Malware Analysis – djvu – 0c246c9724d37db8e1e388eb7b67b4d6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 0c246c9724d37db8e1e388eb7b67b4d6SHA1: 53ef66867056199d75cdf1b093e9662b9032aaafANALYSIS DATE: 2022-12-19T04:02:03ZTTPS: T1222, T1053, T1005, T1081, T1012, T1060,...
Malware Analysis – djvu – d74a0dc62986de2c0dc1386a0f27df7c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: d74a0dc62986de2c0dc1386a0f27df7cSHA1: cdd0b78d4efa72029e1e6a5f8273904c1ba55fc6ANALYSIS DATE: 2022-12-19T05:32:27ZTTPS: T1060, T1112, T1012, T1082, T1005, T1081,...
Malware Analysis – djvu – 0ce77b2c6105b271e56a9fdba7ebe4d9
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 0ce77b2c6105b271e56a9fdba7ebe4d9SHA1: a7ced72278d1f09669b6515044f60ab64e2ba5f2ANALYSIS DATE: 2022-12-19T05:14:56ZTTPS: T1053, T1130, T1112, T1060, T1222, T1082 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – cc51027fe809014366bdb0d51177353a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: cc51027fe809014366bdb0d51177353aSHA1: 320ac83c8b3caad29abb48e6aa04a962a7ba1e15ANALYSIS DATE: 2022-12-19T04:34:54ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 116ebb1279a72d75e1913df07145b5f6
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomwareMD5: 116ebb1279a72d75e1913df07145b5f6SHA1: 56d17ed186a8469a032d9041298a7239549930cbANALYSIS DATE: 2022-12-19T04:12:15ZTTPS: T1130, T1112, T1060, T1222, T1082, T1053 ScoreMeaningExample10Known badA...
Malware Analysis – djvu – 1a53998a5d3e71f0ccdfe220c8646fe1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 1a53998a5d3e71f0ccdfe220c8646fe1SHA1: 670c135cb9c0c1e96cf643ffff145bac9d760056ANALYSIS DATE: 2022-12-18T21:41:19ZTTPS: T1005, T1081, T1012, T1082, T1060, T1112,...
Malware Analysis – djvu – 4d166f22b6002cc5de2e127f9896c8ef
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 4d166f22b6002cc5de2e127f9896c8efSHA1: 6008c5993a49782ef49ba03a8c4cd8aa9f793962ANALYSIS DATE: 2022-12-18T21:35:26ZTTPS: T1053, T1005, T1081, T1012, T1082, T1060,...
