3.5m IP cameras exposed, with US in the lead
The number of internet-facing cameras in the world is growing exponentially. Some of the most popular brands don’t enforce a...
VMware fixed critical VM Escape bug demonstrated at Geekpwn hacking contest
VMware fixed three flaws in multiple products, including a virtual machine escape issue exploited at the GeekPwn 2022 hacking competition....
Daily Vulnerability Trends: Wed Dec 14 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27518Unauthenticated remote arbitrary code executionCVE-2022-3602A buffer overrun can be triggered in X.509...
Cobalt Stike Beacon Detected – 47[.]99[.]46[.]128:1111
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]82[.]210:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]131[.]4[.]250:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]142[.]47:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 206[.]119[.]75[.]229:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]128[.]66[.]61:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]232[.]34[.]39:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]13[.]175[.]57:9090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]165[.]16[.]90:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]214[.]208:999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]43[.]12[.]110:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]219[.]25:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 129[.]150[.]63[.]166:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – cc41cc3ea8f8bce6db07297c4495586e
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: cc41cc3ea8f8bce6db07297c4495586eSHA1: 7ae990b946dcc707b0178d16f7f0616746e8d977ANALYSIS DATE: 2022-12-13T21:22:46ZTTPS: T1082, T1005, T1081, T1060, T1112, T1222,...
Malware Analysis – amadey – fb7b98f3a170ab2947c7a1ad3db3e56e
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:danabot, family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, banker, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5:...
Malware Analysis – amadey – 99a0068281ee5fff38985f6e83bde450
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:dcrat, family:djvu, family:raccoon, family:redline, family:smokeloader, botnet:amddriveer9777, botnet:ec7a54fb6492ff3a52d09504b8ecf082, botnet:sila, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware,...
Malware Analysis – discovery – 96951fa4cdb4bbd291c5831d2c25bda5
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: 96951fa4cdb4bbd291c5831d2c25bda5SHA1: 4d200586d0cf0e21ff4d10809216d3c71a8f148eANALYSIS DATE: 2022-12-13T22:59:52ZTTPS: T1012, T1120, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family...
Malware Analysis – smokeloader – 31c1ecb9c752694df1060a8a92ec101b
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 31c1ecb9c752694df1060a8a92ec101bSHA1: c3d7953eaf8458c80e02d0be0f37181cb9e68cbaANALYSIS DATE: 2022-12-13T21:28:03ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – c83d1fbca9486e793a5cdb48e15bab2f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, discovery, persistence, ransomware, spyware, stealerMD5: c83d1fbca9486e793a5cdb48e15bab2fSHA1: 7b447694827307f3f84f70542289d42640e6c782ANALYSIS DATE: 2022-12-13T23:30:11ZTTPS: T1005, T1081, T1012, T1060, T1112, T1222,...
Malware Analysis – amadey – 732af63d97e2c00874e374bfdcfffda1
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:raccoon, family:smokeloader, botnet:ec7a54fb6492ff3a52d09504b8ecf082, backdoor, bootkit, collection, discovery, persistence, ransomware, spyware, stealer, trojanMD5: 732af63d97e2c00874e374bfdcfffda1SHA1: e887344857072816286b9d52e52b6d80693f6de4ANALYSIS...
Malware Analysis – discovery – dab04cbe137129d3eac35bcbe5ee75b0
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: dab04cbe137129d3eac35bcbe5ee75b0SHA1: 73b92f05f34f444ebc51930bd56d5309b7c13007ANALYSIS DATE: 2022-12-13T23:07:00ZTTPS: T1012, T1120, T1082, T1060, T1112 ScoreMeaningExample10Known badA malware family...
