US-CERT Bulletin (SB23-037):Vulnerability Summary for the Week of January 30, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
CISA: CISA and FBI Release ESXiArgs Ransomware Recovery Guidance
CISA and FBI Release ESXiArgs Ransomware Recovery Guidance Today, CISA and the Federal Bureau of Investigation (FBI) released a joint...
Ransomware review: February 2023
Malwarebytes Threat Intelligence builds a monthly picture of ransomware activity by monitoring the information published by ransomware gangs on their...
Royal Ransomware Victim: Trendsetter Engineering
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – conti – d69589f5bd6c3c799be2d2fd2b718af1
Score: 10 MALWARE FAMILY: contiTAGS:family:conti, ransomwareMD5: d69589f5bd6c3c799be2d2fd2b718af1SHA1: 1c68264c9b7b4fef73cc231b944388b4abaa1962ANALYSIS DATE: 2023-02-08T16:39:01ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
Malware Analysis – – d6ad8da80809d7558c1a934e6ef28cbc
Score: 1 MALWARE FAMILY: TAGS:MD5: d6ad8da80809d7558c1a934e6ef28cbcSHA1: e627b9f49a5fbe767482544c60bfd0743548f00eANALYSIS DATE: 2023-02-08T15:16:46ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – 662d26b4e627e44a0da5e5e99fa41942
Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, ransomwareMD5: 662d26b4e627e44a0da5e5e99fa41942SHA1: 93ea678ba8449bfdfd7a26e82fae39f00185e8d8ANALYSIS DATE: 2023-02-08T15:34:33ZTTPS: T1102, T1082, T1057, T1012, T1112 ScoreMeaningExample10Known badA malware family was...
Malware Analysis – evasion – 1ec0d6f7d058212c7e8288cac9cc97fc
Score: 7 MALWARE FAMILY: evasionTAGS:evasion, ransomwareMD5: 1ec0d6f7d058212c7e8288cac9cc97fcSHA1: 3cfd8b703796e7f32365d6667a84349eb6c5b474ANALYSIS DATE: 2023-02-08T15:38:23ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known...
LockBit 3.0 Ransomware Victim: transports-feuillet[.]fr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
BlackCat/ALPHV Ransomware Victim: Five Guys Enterprises, LLC
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
BlackCat/ALPHV Ransomware Victim: Finaport
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Cobalt Stike Beacon Detected – 190[.]123[.]44[.]122:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]61[.]6[.]63:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 209[.]141[.]36[.]163:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]196[.]194:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BlackCat/ALPHV Ransomware Victim: Kerber, Eck & Braeckel LLP
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
BlackCat/ALPHV Ransomware Victim: JReynolds
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
BlackCat/ALPHV Ransomware Victim: Menken Orlando
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
BlackCat/ALPHV Ransomware Victim: El-Mohandes
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Malware Analysis – djvu – 874a8573bbe9da63a8026990fd4f7327
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:gozi, family:laplas, family:smokeloader, botnet:1001, backdoor, banker, clipper, discovery, isfb, persistence, ransomware, stealer, trojanMD5: 874a8573bbe9da63a8026990fd4f7327SHA1: e2a091f4398f1e54672d46abfa51b8928d9dabd5ANALYSIS...
Malware Analysis – lockbit – fe5101b50e92a923d74cc6f0f4225539
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: fe5101b50e92a923d74cc6f0f4225539SHA1: f7a2fc4e471a203c8a5683c02ada2c3931c8f0ecANALYSIS DATE: 2023-02-08T09:00:40ZTTPS: T1490, T1046, T1082, T1107, T1060, T1112 ScoreMeaningExample10Known...
Cobalt Stike Beacon Detected – 190[.]123[.]44[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]15[.]247[.]249:8086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]206[.]242:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
