Cobalt Stike Beacon Detected – 112[.]74[.]46[.]161:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]198[.]122[.]88:666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]234[.]90:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]225[.]154[.]203:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]41[.]29[.]82:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – discovery – 81a13f9d7efa8f86332cb8f897df2a46
Score: 8 MALWARE FAMILY: discoveryTAGS:discovery, exploitMD5: 81a13f9d7efa8f86332cb8f897df2a46SHA1: d0f11013eca20c750ae74456ed17fb2b010c5e23ANALYSIS DATE: 2022-10-30T17:52:28ZTTPS: T1222 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Malware Analysis – discovery – 82fd0018bb2441cfc589124168472840
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, evasion, exploit, trojanMD5: 82fd0018bb2441cfc589124168472840SHA1: c389e4cd7981f7236f19f357f5ba61901d52dc37ANALYSIS DATE: 2022-10-30T17:57:29ZTTPS: T1088, T1089, T1112, T1222, T1082 ScoreMeaningExample10Known badA malware...
Malware Analysis – evasion – 827fdd109cd5a7380d69ad85d5ac6ca0
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 827fdd109cd5a7380d69ad85d5ac6ca0SHA1: f7c97273942629cc7695db4109b8dd56b6deed50ANALYSIS DATE: 2022-10-30T18:47:37ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – evasion – 82d488f347a4e67db237bf4bbe470c40
Score: 9 MALWARE FAMILY: evasionTAGS:evasion, persistence, ransomwareMD5: 82d488f347a4e67db237bf4bbe470c40SHA1: 0252fde2095c5f45111eb4c60be5a178538dbab0ANALYSIS DATE: 2022-10-30T18:25:23ZTTPS: T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 45[.]154[.]13[.]128:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]70[.]245[.]47:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]86[.]128:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]92[.]67[.]218:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – fc7f8d916ef462b2625f2d879658c7d7
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: fc7f8d916ef462b2625f2d879658c7d7SHA1: 9181dabb0b81f89f30bb43be0723247e9c620b33ANALYSIS DATE: 2022-10-31T10:25:14ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 47f913162c41fbbb8d4df6dd8db678b1
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, botnet:slovarik1btc, backdoor, bootkit, collection, discovery, infostealer, persistence, ransomware, spyware, trojanMD5: 47f913162c41fbbb8d4df6dd8db678b1SHA1: 67aad17ae47bc054c066cf285a5a0093cc6ee3f9ANALYSIS...
Malware Analysis – smokeloader – 378aa9513d43ab0502ff20063fbf4adf
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 378aa9513d43ab0502ff20063fbf4adfSHA1: d3b06d16b1c1bccdc0489f8014893cf33e028729ANALYSIS DATE: 2022-10-31T10:25:18ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – 824ff4f4dee50edcdffa47005b5e94a3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:mario23_10, botnet:slovarik1btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, trojanMD5: 824ff4f4dee50edcdffa47005b5e94a3SHA1: 928594c20c1d119d3a96620de99c175387bae38aANALYSIS DATE:...
Empire C2 Detected – 124[.]222[.]44[.]192:7000
The Information provided at the time of posting was detected as "Empire C2". Depending on when you are viewing this...
Black Basta Ransomware Victim: BITRON2
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: STECINT_2
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Brute Ratel C4 Detected – 45[.]43[.]2[.]62:443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Apache Geode cross-site scripting | CVE-2022-34870
NAME Apache Geode cross-site scripting Platforms Affected:Apache Geode 1.15.0Risk Level:7.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Apache Geode is vulnerable to cross-site scripting, caused...
Malicious dropper apps on Play Store totaled 30.000+ installations
ThreatFabric researchers discovered five malicious dropper apps on Google Play Store with more than 130,000 downloads. Researchers at ThreatFabric have...
Malware Analysis – persistence – a3b398f475ab038fb838f5f8e54d7faf
Score: 9 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: a3b398f475ab038fb838f5f8e54d7fafSHA1: de81525eeb94f703a53955eb990223014c9186e0ANALYSIS DATE: 2022-10-30T13:28:51ZTTPS: T1107, T1490, T1060, T1112 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
