Score: 10 MALWARE FAMILY: prestigeTAGS:family:prestige, ransomware, spyware, stealerMD5: 8119c78b7cfb7d9ce37286ec9fc263e2SHA1: 986ba7a5714ad5b0de0d040d1c066389bcb81a67ANALYSIS DATE: 2022-11-03T09:47:40ZTTPS: T1059, T1107, T1490, T1005, T1081 ScoreMeaningExample10Known badA malware...
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: ca35f457f2d85805e61b7aa6ed31fcd8SHA1: 4ce8d85c0f82155d0511e180a449bc64506e55e5ANALYSIS DATE: 2022-11-03T10:32:52ZTTPS: T1012, T1120, T1082, T1107, T1490, T1060, T1112, T1004 ScoreMeaningExample10Known badA...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 6e43a41bb24edf2153da4992518e7d79SHA1: 63d4e025ca00e8eb014bc28ed227c38ec0648d14ANALYSIS DATE: 2022-11-03T10:40:33ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 6991740950de9d500929f8464e74ba67SHA1: 455a42f2f5501641b91cecfc4af109728af57687ANALYSIS DATE: 2022-11-03T10:41:59ZTTPS: T1005, T1081, T1060, T1112, T1222, T1082,...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: 6f9bdd58f6e5339a90ae7c38a963ce4cSHA1: 199064011605cd86388f66865404a7da4d384fa7ANALYSIS DATE: 2022-11-03T10:50:46ZTTPS: T1012, T1082, T1005, T1081, T1222, T1060,...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: abb5ecb983c58da88b294807dc776032SHA1: 7c1cfbf0a70f1c7afaea82af0fbfd348499b1f77ANALYSIS DATE: 2022-11-03T11:00:25ZTTPS: T1082, T1053, T1005, T1081, T1012, T1060,...
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: f654dfdd05afc48f88ef3ca64e7e69d1SHA1: 837f2da6127d415c5b063bb5e73c62aadee6b813ANALYSIS DATE: 2022-11-03T11:25:13ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: 4bb5c0ed18f4b7ae33ba272eae17abf2SHA1: e0e02b31d3ad2e965d223ebe3451bd9c9e0385faANALYSIS...
Score: 5 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: db2c67c513d5bd1edde683e770c77790SHA1: c7a84b667aacd4b220bacb160c2e990f6bced4baANALYSIS DATE: 2022-11-03T11:38:37ZTTPS: T1491, T1112, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: e043f277d99b653243078d318e063b46SHA1: baad7c939debbfd879c7c0f62f496ec6dddedd37ANALYSIS DATE:...
TikTok updated its privacy policy for European Economic Area (“EEA”) and confirmed that its Chinese staff can access their users’ data....
NAME Fortinet FortiADC cross-site scripting Platforms Affected:Fortinet FortiADC 7.1.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Fortinet FortiADC is vulnerable to cross-site scripting, caused...
NAME Fortinet FortiAnalyzer and Fortinet FortiManager cross-site scripting Platforms Affected:Risk Level:8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION Fortinet FortiAnalyzer and Fortinet FortiManager are vulnerable...
NAME IP-COM EW9 command execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION IP-COM EW9 could allow a remote attacker to execute arbitrary...
NAME XenSource Xen Xenstore privilege escalation Platforms Affected:XenSource XenRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION XenSource Xen could allow a local attacker to...
NAME Sanitization Management System SQL injection Platforms Affected:Risk Level:7.2Exploitability:HighConsequences:Data Manipulation DESCRIPTION Sanitization Management System is vulnerable to SQL injection. A...
NAME Fortinet FortiADC cross-site scripting Platforms Affected:Fortinet FortiADC 6.2.0 Fortinet FortiADC 7.0.2 Fortinet FortiADC 7.0.0 Fortinet FortiADC 6.2.4Risk Level:8.8Exploitability:HighConsequences:Cross-Site Scripting...
Fortinet addressed 16 vulnerabilities in some of the company’s products, six flaws received a ‘high’ severity rate. One of the...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-22241An Improper Input Validation vulnerability in the J-Web component of Juniper Networks...
Introduction This report describes several interesting incidents observed by the Kaspersky Managed Detection and Response (MDR) team. The goal of the...
