LockBit 3.0 Ransomware Victim: cefcostores[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: albanesi[.]com[.]ar
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – octo – 606b94fa8407316bcddaab6c35b64bc8
Score: 10 MALWARE FAMILY: octoTAGS:family:octo, banker, evasion, infostealer, ransomware, rat, trojanMD5: 606b94fa8407316bcddaab6c35b64bc8SHA1: 77227e9a1d78d2968f07f6d4be63811a2333bd16ANALYSIS DATE: 2023-02-14T10:19:16ZTTPS: ScoreMeaningExample10Known badA malware family was...
Malware Analysis – djvu – 9c6ab7aae2124899c85323156ad26e86
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 9c6ab7aae2124899c85323156ad26e86SHA1: 35c573961fa55f9549859a8b26cacd3600030d84ANALYSIS DATE: 2023-02-14T09:03:15ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – 8a0d4ad83b742a47ab723caffbcffda7
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 8a0d4ad83b742a47ab723caffbcffda7SHA1: 820efb5b2b1e4136f30800ebb3c68933942450b9ANALYSIS DATE: 2023-02-14T10:10:18ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – djvu – 5d1b05a15e2e3cb0f22999d24d5cbe87
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 5d1b05a15e2e3cb0f22999d24d5cbe87SHA1: b172ca1edb980d35fe7779142cd5d718b076271fANALYSIS...
Malware Analysis – djvu – 19cddc6bdde317a1291c35be4a3f1a85
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 19cddc6bdde317a1291c35be4a3f1a85SHA1: 6c2b5fe6bf4671ea33f22fcb09afdb70b42491c2ANALYSIS DATE: 2023-02-14T10:35:26ZTTPS: T1082, T1053, T1012, T1005,...
Malware Analysis – djvu – da3ca16cb610b7d26a6303556ef78c60
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: da3ca16cb610b7d26a6303556ef78c60SHA1: d5812ca0cd178605d232589c0f9176eab1ea6012ANALYSIS DATE: 2023-02-14T10:40:27ZTTPS: T1053, T1005, T1081, T1012,...
Malware Analysis – smokeloader – dfc608e08849b60d39c69bd24bcdc63f
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: dfc608e08849b60d39c69bd24bcdc63fSHA1: 7775aa1574ee0ca33303aac8d6ab8fb0caaf5d54ANALYSIS DATE: 2023-02-14T10:33:11ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – f98fe87bead9791ad932ee9e21a5f75c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: f98fe87bead9791ad932ee9e21a5f75cSHA1: c126886171f8b93da108c2bd8c78ba0fa280a8acANALYSIS DATE: 2023-02-14T10:22:04ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – evasion – d8959c5605e56b152c635aa80e01b266
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: d8959c5605e56b152c635aa80e01b266SHA1: 6b2e877afe304557830d98ba4bbb0425485f8072ANALYSIS DATE: 2023-02-14T11:53:16ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – ransomware – f01ebad1b96dd519f39d6911e086650b
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: f01ebad1b96dd519f39d6911e086650bSHA1: 313b86587c94feceda09198b8a2e5892a7383db0ANALYSIS DATE: 2023-02-14T11:46:06ZTTPS: T1005, T1081, T1107, T1490 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – smokeloader – dbfb7c060193971c9fe40ddf22a9e3e0
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: dbfb7c060193971c9fe40ddf22a9e3e0SHA1: 375114a694b9267e2e96268a3bcd01469a344991ANALYSIS DATE: 2023-02-14T11:34:07ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – 21c313045e7616ed10b00400f16a3bb7
Score: 3 MALWARE FAMILY: TAGS:MD5: 21c313045e7616ed10b00400f16a3bb7SHA1: 4bdcba2131f6267a8eb6697bec5969d367c70496ANALYSIS DATE: 2023-02-14T10:40:32ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Dell Command | Intel vPro Out of Band denial of service | CVE-2023-23697
NAME__________Dell Command | Intel vPro Out of Band denial of servicePlatforms Affected:Risk Level:4.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Dell Command | Intel vPro...
Dell Command | Monitor denial of service | CVE-2023-24573
NAME__________Dell Command | Monitor denial of servicePlatforms Affected:Risk Level:4.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Dell Command | Monitor is vulnerable to a denial...
Dell Command | Integration Suite for System Center denial of service | CVE-2023-24572
NAME__________Dell Command | Integration Suite for System Center denial of servicePlatforms Affected:Risk Level:4.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Dell Command | Integration Suite...
Dell Alienware Command Center privilege escalation | CVE-2023-24569
NAME__________Dell Alienware Command Center privilege escalationPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Dell Alienware Command Center could allow a local authenticated attacker to...
Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG command execution | CVE-2022-38547
NAME__________Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG command executionPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG could...
Apple macOS Ventura information disclosure | CVE-2023-23522
NAME__________Apple macOS Ventura information disclosurePlatforms Affected:Apple macOS Ventura 13.2Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Ventura could allow a local attacker to...
Multiple Dahua embedded products security bypass | CVE-2022-30564
NAME__________Multiple Dahua embedded products security bypassPlatforms Affected:Dahua SD5A Series Dahua IPC-HX5XXX Dahua NVR2XXX Dahua NVR5XXXRisk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Multiple Dahua embedded...
Multiple Baicells devices command execution | CVE-2023-0776
NAME__________Multiple Baicells devices command executionPlatforms Affected:Baicells Nova 436Q QRTB 2.12.7 Baicells Nova 430E QRTB 2.12.7 Baicells Nova 430I QRTB 2.12.7...
IPython command execution | CVE-2023-24816
NAME__________IPython command executionPlatforms Affected:IPython IPython 8.9.0Risk Level:4.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IPython could allow a local attacker to execute arbitrary commands on the...
SourceCodester Canteen Management System SQL injection | CVE-2023-0781
NAME__________SourceCodester Canteen Management System SQL injectionPlatforms Affected:Sourcecodester Canteen Management System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Canteen Management System is vulnerable to...
